------------------------------------------------------------------ --- Changelog.all ----------- Sat Jan 24 09:49:33 UTC 2026 ------ ------------------------------------------------------------------ ------------------------------------------------------------------ ------------------ 2026-1-21 - Jan 21 2026 ------------------- ------------------------------------------------------------------ ++++ bind: - Upgrade to release 9.20.18 Security Fixes: * Fix incorrect length checks for BRID and HHIT records. (CVE-2025-13878) [bsc#1256997] Feature Changes: * Add more information to the rndc recursing output about fetches. * Reduce the number of outgoing queries. * Provide more information when memory allocation fails. Bug Fixes: * Make DNSSEC key rollovers more robust. * Fix a catalog zone issue, where member zones could fail to load. * Allow glue in delegations with QTYPE=ANY. * Fix slow speed when signing a large delegation zone with NSEC3 opt-out. * Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to be invalid. * Fix a possible catalog zone issue during reconfiguration. * Fix the charts in the statistics channel. * Adding NSEC3 opt-out records could leave invalid records in chain. * Fix spurious timeouts while resolving names. * Fix bug where zone switches from NSEC3 to NSEC after retransfer. * AMTRELAY type 0 presentation format handling was wrong. * Fix parsing bug in remote-servers with key or TLS. * Fix DoT reconfigure/reload bug in the resolver. * Skip unsupported algorithms when looking for a signing key. * Fix dnssec-keygen key collision checking for KEY RRtype keys. * dnssec-verify now uses exit code 1 when failing due to illegal options. * Prevent assertion failures of dig when a server is specified before the -b option. * Skip buffer allocations if not logging. ++++ chromium: - Chromium 144.0.7559.96 (boo#1257011) * CVE-2026-1220: Race in V8 ------------------------------------------------------------------ ------------------ 2026-1-20 - Jan 20 2026 ------------------- ------------------------------------------------------------------ ++++ chromium: - update INSTALL.sh to handle the addded tags in the desktop file (boo#1256938) ++++ python-jaraco.context: - Add CVE-2026-23949.patch to fix CVE-2026-23949 (bsc#1256954) ++++ python-weasyprint: - Add CVE-2025-68616.patch to fix server-side request forgery (SSRF) vulnerability in default fetcher. (bsc#1256936, CVE-2025-68616, gh#Kozea/WeasyPrint@b6a14f0f3f4c) ------------------------------------------------------------------ ------------------ 2026-1-19 - Jan 19 2026 ------------------- ------------------------------------------------------------------ ++++ python-pyasn1: - Add CVE-2026-23490.patch to fix CVE-2026-23490 (bsc#1256902) ------------------------------------------------------------------ ------------------ 2026-1-16 - Jan 16 2026 ------------------- ------------------------------------------------------------------ ++++ gimp: - Add CVE fixes: + gimp-CVE-2025-14422.patch (bsc#1255293 CVE-2025-14422) + gimp-CVE-2025-14423.patch (bsc#1255294 CVE-2025-14423) + gimp-CVE-2025-14424.patch (bsc#1255295 CVE-2025-14424) + gimp-CVE-2025-14425.patch (bsc#1255296 CVE-2025-14425) ++++ kernel-livepatch-SLE16_Update_2: - Bump up the version number in spec file - commit a963d4c ++++ openQA: - Update to version 5.1768564451.45d5d5b2: * feat: optionally configure fake auth key+secret+expiration * OpenSuseIssueReporter: Avoid multiple push calls * unit_tests: Add unit tests for OpenSuseBugzillaUtils * unit_tests: Adapt the UI tests to the new kernel bug button * plugins: Introduce OpenSuseIssueReporter for external issue reporting ++++ os-autoinst: - Update to version 5.1768577300.b85e486: * fix(dist): provide proper copyright headers in all spec-files * fix(dist): try to fix os-autoinst-obs-auto-submit reverting content * fix(dist): exclude unstable t/28-signalblocker.t in OBS checks * Remove deprecated BIOS and UEFI_PFLASH variables * Add documentation of APPEND variable * os-autoinst-generate-needle-preview: Embed PNG ------------------------------------------------------------------ ------------------ 2026-1-15 - Jan 15 2026 ------------------- ------------------------------------------------------------------ ++++ ffmpeg-4: - Add ffmpeg-4-CVE-2025-63757.patch: Backport 0c6b7f948 from upstream. swscale/output: Fix integer overflow in yuv2ya16_X_c_template() (bsc#1255392, CVE-2025-63757). ++++ go1.24: - go1.24.12 (released 2026-01-15) includes security fixes to the go command, and the archive/zip, crypto/tls, and net/url packages, as well as bug fixes to the compiler, the runtime, and the crypto/tls and os packages. Refs boo#1236217 go1.24 release tracking CVE-2025-61726 CVE-2025-61728 CVE-2025-61730 CVE-2025-61731 CVE-2025-68119 CVE-2025-68121 * go#76854 go#76443 boo#1256821 security: fix CVE-2025-61730 crypto/tls: handshake messages may be processed at the incorrect encryption level * go#77103 go#77099 boo#1256820 security: fix CVE-2025-68119 cmd/go: unexpected code execution when invoking toolchain * go#77105 go#77100 boo#1256819 security: fix CVE-2025-61731 cmd/go: bypass of flag sanitization can lead to arbitrary code execution * go#77107 go#77101 boo#1256817 security: fix CVE-2025-61726 net/http: memory exhaustion in Request.ParseForm * go#77109 go#77102 boo#1256816 security: fix CVE-2025-61728 archive/zip: denial of service when parsing arbitrary ZIP archives * go#77114 go#77113 boo#1256818 security: fix CVE-2025-68121 crypto/tls: Config.Clone copies automatically generated session ticket keys, session resumption does not account for the expiration of full certificate chain * go#76408 crypto/tls: earlyTrafficSecret should use ClientHelloInner if ECH enabled * go#76624 os: on Unix, Readdirnames skips directory entries with zero inodes * go#76760 runtime: stack split at bad time in os/signal with Go 1.25.4 windows 386 * go#76796 runtime: race detector crash on ppc64le * go#76966 cmd/compile/internal/ssa: Compile.func1(): panic during sccp while compiling : runtime error: index out of range ++++ go1.25: - go1.25.6 (released 2026-01-15) includes security fixes to the go command, and the archive/zip, crypto/tls, and net/url packages, as well as bug fixes to the compiler, the runtime, and the crypto/tls, errors, and os packages. Refs boo#1244485 go1.25 release tracking CVE-2025-61726 CVE-2025-61728 CVE-2025-61730 CVE-2025-61731 CVE-2025-68119 CVE-2025-68121 * go#76855 go#76443 boo#1256821 security: fix CVE-2025-61730 crypto/tls: handshake messages may be processed at the incorrect encryption level * go#77104 go#77099 boo#1256820 security: fix CVE-2025-68119 cmd/go: unexpected code execution when invoking toolchain * go#77106 go#77100 boo#1256819 security: fix CVE-2025-61731 cmd/go: bypass of flag sanitization can lead to arbitrary code execution * go#77108 go#77101 boo#1256817 security: fix CVE-2025-61726 net/http: memory exhaustion in Request.ParseForm * go#77110 go#77102 boo#1256816 security: fix CVE-2025-61728 archive/zip: denial of service when parsing arbitrary ZIP archives * go#77115 go#77113 boo#1256818 security: fix CVE-2025-68121 crypto/tls: Config.Clone copies automatically generated session ticket keys, session resumption does not account for the expiration of full certificate chain * go#76392 os: package initialization hangs is Stdin is blocked * go#76409 crypto/tls: earlyTrafficSecret should use ClientHelloInner if ECH enabled * go#76620 os: on Unix, Readdirnames skips directory entries with zero inodes * go#76761 runtime: stack split at bad time in os/signal with Go 1.25.4 windows 386 * go#76776 runtime: race detector crash on ppc64le * go#76967 cmd/compile/internal/ssa: Compile.func1(): panic during sccp while compiling : runtime error: index out of range * go#76973 errors: errors.Join behavior changed in 1.25 ++++ helmfile: - remove two obsoletes for still existing subpackages. ++++ libpng16: - security update - added patches * libpng16-CVE-2025-22801.patch CVE-2026-22695 [bsc#1256525], Heap buffer over-read in png_image_finish_read * libpng16-CVE-2026-22695.patch CVE-2026-22801 [bsc#1256526], Integer truncation causing heap buffer over-read in png_image_write_* * libpng16-CVE-2026-22801.patch ++++ micro-editor: - Update to version 2.0.15: * truecolor (supersedes the MICRO_TRUECOLOR environment variable) * showchars (deprecates indentchar) * lockbindings for completely disallowing plugins to modify keybindings * helpsplit for changing default split type for the help command * pageoverlap for setting number of lines kept during page up/page down * Added FirstTab, LastTab, FirstSplit and LastSplit commands * SkipMultiCursorBack as a counterpart to SkipMultiCursor * CursorToViewTop, CursorToViewCenter, CursorToViewBottom * Duplicate for duplicating the selection only, not the whole line * Plugins never write to settings.json or bindings.json anymore * Add onBufferOptionChanged callback * Add SpawnCursorAtLoc() * Expose bufpane's DoubleClick and TripleClick to plugins * Pass mouse info to {on,pre}MouseXXX callbacks * Support goto statement from Lua 5.2 * Various Syntax Highlighting improvements ------------------------------------------------------------------ ------------------ 2026-1-14 - Jan 14 2026 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 144.0.7559.59 (boo#1256614) * CVE-2026-0899: Out of bounds memory access in V8 * CVE-2026-0900: Inappropriate implementation in V8 * CVE-2026-0901: Inappropriate implementation in Blink * CVE-2026-0902: Inappropriate implementation in V8 * CVE-2026-0903: Insufficient validation of untrusted input in Downloads * CVE-2026-0904: Incorrect security UI in Digital Credentials * CVE-2026-0905: Insufficient policy enforcement in Network * CVE-2026-0906: Incorrect security UI * CVE-2026-0907: Incorrect security UI in Split View * CVE-2026-0908: Use after free in ANGLE - added patches: * chromium-144-rust-adler2.patch (with system rust-1.86, we still have adler2) * chromium-144-revert_gfx_value_or.patch (looks like third_party/skia is outdated) * chromium-144-revert-libxml-2.13.patch (conditionally applied if libxml < 2.13) - modified patches: * chromium-125-compiler.patch * chromium-127-bindgen.patch * chromium-127-rust-clanglib.patch (rust nightly features are now guarded, drop hunk) * gcc-enable-lto.patch * ppc-fedora-0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch * ppc-fedora-0002-regenerate-xnn-buildgn.patch (regenerated) - dropped patches: * ppc-fedora-fix-clang-selection.patch (upstream) * chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch * chromium-142-rust-revert_should_panic.patch - keeplibs: added third_party/perfetto/protos/third_party/pprof (pulled in) - gn buildflags: * drop duplicate "use_sysroot=false" * add "chrome_pgo_phase=0" as in debian and fedora - use noopenh264 where available ++++ chromium: - Chromium 144.0.7559.59 (boo#1256614) * CVE-2026-0899: Out of bounds memory access in V8 * CVE-2026-0900: Inappropriate implementation in V8 * CVE-2026-0901: Inappropriate implementation in Blink * CVE-2026-0902: Inappropriate implementation in V8 * CVE-2026-0903: Insufficient validation of untrusted input in Downloads * CVE-2026-0904: Incorrect security UI in Digital Credentials * CVE-2026-0905: Insufficient policy enforcement in Network * CVE-2026-0906: Incorrect security UI * CVE-2026-0907: Incorrect security UI in Split View * CVE-2026-0908: Use after free in ANGLE - added patches: * chromium-144-rust-adler2.patch (with system rust-1.86, we still have adler2) * chromium-144-revert_gfx_value_or.patch (looks like third_party/skia is outdated) * chromium-144-revert-libxml-2.13.patch (conditionally applied if libxml < 2.13) - modified patches: * chromium-125-compiler.patch * chromium-127-bindgen.patch * chromium-127-rust-clanglib.patch (rust nightly features are now guarded, drop hunk) * gcc-enable-lto.patch * ppc-fedora-0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch * ppc-fedora-0002-regenerate-xnn-buildgn.patch (regenerated) - dropped patches: * ppc-fedora-fix-clang-selection.patch (upstream) * chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch * chromium-142-rust-revert_should_panic.patch - keeplibs: added third_party/perfetto/protos/third_party/pprof (pulled in) - gn buildflags: * drop duplicate "use_sysroot=false" * add "chrome_pgo_phase=0" as in debian and fedora - use noopenh264 where available ++++ emacs: * Add patch desktop.patch and then remove dependency on update-desktop-files (jsc#PED-15201) ++++ openQA: - Update to version 5.1768323619.9a70ab91: * refactor: Extend tests of df-based cleanup * fix: Avoid wrong deletion of archived jobs in df-based cleanup * refactor: Move logic for validating percentage into helper * refactor: Clarify wording in comment regarding job cleanup * Use template literals in certain JavaScript code * Retry delete_needles job on server restart * Add test for _delete_needles * feat(OpenQA::Git): Cleanup git dir in commit() on shutdown * feat: Improve rendering results on the scheduled product page ++++ os-autoinst: - Update to version 5.1768317525.86a9a7f: * fix(dist): exclude unstable t/28-signalblocker.t in OBS checks * Remove deprecated BIOS and UEFI_PFLASH variables * Add documentation of APPEND variable * Add undocumented KERNEL/INITRD to the supported variables * os-autoinst-generate-needle-preview: Embed PNG ------------------------------------------------------------------ ------------------ 2026-1-13 - Jan 13 2026 ------------------- ------------------------------------------------------------------ ++++ flint: - Add c23.patch, fixing a compile error for downstream users when using -std=c23 or a newer GCC which defaults to such. ++++ kernel-livepatch-SLE16_Update_2: - Fix for CVE-2025-40212 ("nfsd: fix refcount leak in nfsd_set_fh_dentry()") Live patch for CVE-2025-40212. Upstream commit: - 8a7348a9ed70 ("nfsd: fix refcount leak in nfsd_set_fh_dentry()") KLP: CVE-2025-40212 References: bsc#1254196 CVE-2025-40212 - commit acf271a ++++ s390-tools: - Upgrade s390-tools to 2.40 (jsc#PED-14586) - Add new tools / libraries: * Add project-wide .clang-tidy configuration * libutil: Introduce util_time for time related functionality * libutil: Introduce zsh/bash autocompletion tooling based on util_opt * pvinfo: Tool to display Secure Execution system information * pvverify: Tool to verify host-key documents - Changes of existing tools: * cpumf: Implement zsh and bash autocompletion * dasdfmt: Implement zsh and bash autocompletion * dbginfo.sh: Add NetworkManager and netplan * dbginfo.sh: Add kvm_stat * dbginfo.sh: Adding stp time information * dbginfo.sh: Simplify procfs collection * hyptop: Add physical information row * hyptop: Calculate sample time delta for physical partition * hyptop: Replace long option names using _ with - for consistency For example: --cpu_types -> --cpu-types (Options with _ are still supported for backward compatibility) * libekmfweb: Add function to validate a certificate against the identity key * netboot: Add longer kernel command lines support * udev/rules.d: Make virtio-blk devices non-rotational * udev/rules.d: Set default io scheduler to 'none' for virtio-blk * ziomon: Add support to sample device symlinks (/dev/disk/...) * ziorep_config: Add fcp-lun details to -M option output * ziorep_config: Add port_id and failed attributes to -A option output * netboot: Install on non-s390 architectures - Bug Fixes: * lib(ekmfweb|kmipclient): Use ln without -r * s390-tools: Fix various compilation issues with musl libc * zipl/boot: Fix unused loadparm when SCLP line-mode console is absent - Reworked patches * s390-tools-sles12-create-filesystem-links.patch * s390-tools-sles12-fdasd-skip-partition-check-and-BLKRRPART-ioctl.patch * s390-tools-sles12-zipl_boot_msg.patch * s390-tools-sles15-sysconfig-compatible-dumpconf.patch * s390-tools-sles15sp3-Allow-multiple-device-arguments.patch * s390-tools-sles15sp3-Format-devices-in-parallel.patch * s390-tools-sles15sp3-Implement-Y-yast_mode.patch * s390-tools-sles15sp3-Implement-f-for-backwards-compability.patch * s390-tools-sles15sp3-dasdfmt-retry-BIODASDINFO-if-device-is-busy.patch - Removed obsolete patch * s390-tools-sles15sp5-remove-no-pie-link-arguments.patch - Applied additional patch * s390-tools-sles15sp3-Format-devices-in-parallel-1.patch - Re-vendor-ed vendor.tar.zst - Amended the .spec file, fixed Rust compilation errors ++++ polymake: - Enable polydb for Tumbleweed / suse_version>=1690 - Reenable callable library mode [boo#1256453] ++++ openQA: - Update to version 5.1768323619.9a70ab91: * refactor: Extend tests of df-based cleanup * fix: Avoid wrong deletion of archived jobs in df-based cleanup * refactor: Move logic for validating percentage into helper * refactor: Clarify wording in comment regarding job cleanup * Use template literals in certain JavaScript code * Retry delete_needles job on server restart * Add test for _delete_needles * feat(OpenQA::Git): Cleanup git dir in commit() on shutdown * feat: Improve rendering results on the scheduled product page ++++ python-urllib3: - Add CVE-2026-21441.patch to fix excessive resource consumption during decompression of data in HTTP redirect responses (bsc#1256331, CVE-2026-21441) ++++ python-virtualenv: - Add patch CVE-2026-22702.patch to fix CVE-2026-22702 (bsc#1256458) ------------------------------------------------------------------ ------------------ 2026-1-12 - Jan 12 2026 ------------------- ------------------------------------------------------------------ ++++ ansible-sap-launchpad: Refactor Ansible Modules and adjust for ansible-core 2.19. - 1.3.1 - Bugfixes: - collection: Add ansible-test sanity workflow and fix sanity errors - 1.3.0 - Changes: - collection: Refactor all Ansible Modules - sap_software_download: Update for ansible-core 2.19 - Bugfixes: - sap_software_download: Fix for failed checksums not correctly retrying ++++ minisign: - Bugfix: * bugfix: duplicate command-line arguments [7dfdb3c] * Add minisign-dup-command-line-args.patch - Security fix: [gpg.fail/trustcomment] * Trusted comment injection (minisign) [6c59875] * trim(): only trim trailing \r\n, reject straight \r characters * Add minisign-gpg.fail-trustcomment.patch - Security fix: [gpg.fail/minisign] * Trusted comment injection (minisign) [a10dc92] * Bail out if the signature file contains unprintable characters * Add minisign-gpg.fail-minisign.patch ++++ openQA: - Update to version 5.1768209690.f34c2973: * feat(scheduled-products): Allow adding note to result data * docs: Use node_modules target * docs: Mention minimum PostgreSQL version * ci: Update PostgreSQL in CI/packaging to at least 14 * Revert "Add MCP tool annotations for Claude connector compliance" ++++ openQA: - Update to version 5.1768209690.f34c2973: * feat(scheduled-products): Allow adding note to result data * docs: Use node_modules target * docs: Mention minimum PostgreSQL version * ci: Update PostgreSQL in CI/packaging to at least 14 * Revert "Add MCP tool annotations for Claude connector compliance" ------------------------------------------------------------------ ------------------ 2026-1-9 - Jan 9 2026 ------------------- ------------------------------------------------------------------ ++++ openvswitch: - Update OVN to 25.03.2 - Bug fixes - Dynamic Routing: * Add the option "dynamic-routing-redistribute-local-only" to Logical Routers and Logical Router Ports which refines the way in which chassis-specific Advertised_Routes (e.g., for NAT and LB IPs) are advertised. * Add the option "dynamic-routing-vrf-id" to Logical Routers which allows CMS to specify the Linux routing table id for a given vrf. - Add ovn-nbctl lsp-add-router-port which will create router port on specified LS. - Add ovn-nbctl lsp-add-localnet-port which will create localnet port on specified LS. ++++ man: - Do not masked out the already existing %ghost file entry (Accordingly to Packaging for Immutable Mode - Best Practices) ++++ python-marshmallow: - Add CVE-2025-68480.patch to fix CVE-2025-68480 (bsc#1255473) ------------------------------------------------------------------ ------------------ 2026-1-8 - Jan 8 2026 ------------------- ------------------------------------------------------------------ ++++ MozillaFirefox: - Firefox Extended Support Release 140.7.0 ESR * Fixed: Various security fixes. MFSA 2026-03 (bsc#1256340) * CVE-2026-0877 (bmo#1999257) Mitigation bypass in the DOM: Security component * CVE-2026-0878 (bmo#2003989) Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component * CVE-2026-0879 (bmo#2004602) Sandbox escape due to incorrect boundary conditions in the Graphics component * CVE-2026-0880 (bmo#2005014) Sandbox escape due to integer overflow in the Graphics component * CVE-2026-0882 (bmo#1924125) Use-after-free in the IPC component * CVE-2025-14327 (bmo#1970743) Spoofing issue in the Downloads Panel component * CVE-2026-0883 (bmo#1989340) Information disclosure in the Networking component * CVE-2026-0884 (bmo#2003588) Use-after-free in the JavaScript Engine component * CVE-2026-0885 (bmo#2003607) Use-after-free in the JavaScript: GC component * CVE-2026-0886 (bmo#2005658) Incorrect boundary conditions in the Graphics component * CVE-2026-0887 (bmo#2006500) Clickjacking issue, information disclosure in the PDF Viewer component * CVE-2026-0890 (bmo#2005081) Spoofing issue in the DOM: Copy & Paste and Drag & Drop component * CVE-2026-0891 (bmo#1964722, bmo#2000981, bmo#2003100, bmo#2003278) Memory safety bugs fixed in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147 ++++ coredns: - fix CVE-2025-68156 bsc#1255345 - fix CVE-2025-68161 bsc#1256411 - Update to version 1.14.0: * core: Fix gosec G115 integer overflow warnings * core: Add regex length limit * plugin/azure: Fix slice init length * plugin/errors: Add optional show_first flag to consolidate directive * plugin/file: Fix for misleading SOA parser warnings * plugin/kubernetes: Rate limits to api server * plugin/metrics: Implement plugin chain tracking * plugin/sign: Report parser err before missing SOA * build(deps): bump github.com/expr-lang/expr from 1.17.6 to 1.17.7 - Update to version 1.13.2: * core: Add basic support for DoH3 * core: Avoid proxy unnecessary alloc in Yield * core: Fix usage of sync.Pool to save an alloc * core: Fix data race with sync.RWMutex for uniq * core: Prevent QUIC reload panic by lazily initializing the listener * core: Refactor/use reflect.TypeFor * plugin/auto: Limit regex length * plugin/cache: Remove superfluous allocations in item.toMsg * plugin/cache: Isolate metadata in prefetch goroutine * plugin/cache: Correct spelling of MaximumDefaultTTL in cache and dnsutil packages * plugin/dnstap: Better error handling (redial & logging) when Dnstap is busy * plugin/file: Performance finetuning * plugin/forward: Disallow NOERROR in failover * plugin/forward: Added support for per-nameserver TLS SNI * plugin/forward: Prevent busy loop on connection err * plugin/forward: Add max connect attempts knob * plugin/geoip: Add ASN schema support * plugin/geoip: Add support for subdivisions * plugin/kubernetes: Fix kubernetes plugin logging * plugin/multisocket: Cap num sockets to prevent OOM * plugin/nomad: Support service filtering * plugin/rewrite: Pre-compile CNAME rewrite regexp * plugin/secondary: Fix reload causing secondary plugin goroutine to leak - Update to version 1.13.1: * core: Avoid string concatenation in loops * core: Update golang to 1.25.2 and golang.org/x/net to v0.45.0 on CVE fixes * plugin/sign: Reject invalid UTF‑8 dbfile token - Update to version 1.13.0: * core: Export timeout values in dnsserver.Server * core: Fix Corefile infinite loop on unclosed braces * core: Fix Corefile related import cycle issue * core: Normalize panics on invalid origins * core: Rely on dns.Server.ShutdownContext to gracefully stop * plugin/dnstap: Add bounds for plugin args * plugin/file: Fix data race in tree Elem.Name * plugin/forward: No failover to next upstream when receiving SERVFAIL or REFUSED response codes * plugin/grpc: Enforce DNS message size limits * plugin/loop: Prevent panic when ListenHosts is empty * plugin/loop: Avoid panic on invalid server block * plugin/nomad: Add a Nomad plugin * plugin/reload: Prevent SIGTERM/reload deadlock ++++ gpg2: - Security fix: [bsc#1255715, CVE-2025-68973] (gpg.fail/memcpy) * gpg: Fix possible memory corruption in the armor parser [T7906] * Add gnupg-CVE-2025-68973.patch - Security fix: [bsc#1256246] (gpg.fail/sha1) * gpg: Avoid potential downgrade to SHA1 in 3rd party key signatures [T7904] * Add gnupg-gpg-Avoid-potential-downgrade-to-SHA1-in-3rd-party-keysig.patch - Security fix: [bsc#1256244] (gpg.fail/detached) * gpg: Error out on unverified output for non-detached signatures [T7903] * Add gnupg-gpg-Error-out-on-unverified-output-for-non-detached-signatures.patch - Security fix: [bsc#1256390] (gpg.fail/notdash) * gpg2: Cleartext Signature Forgery in the NotDashEscaped header implementation in GnuPG * Add patch gnupg-notdash-escape.patch ++++ openQA: - Update to version 5.1767864265.63cd20df: * Skip caching for KERNEL and INITRD variables ++++ openQA: - Update to version 5.1767868268.dacbd3f7: * Add MCP tool annotations for Claude connector compliance - Update to version 5.1767864265.63cd20df: * Skip caching for KERNEL and INITRD variables ++++ openQA: - Update to version 5.1767868268.dacbd3f7: * Add MCP tool annotations for Claude connector compliance - Update to version 5.1767864265.63cd20df: * Skip caching for KERNEL and INITRD variables ++++ os-autoinst: - Update to version 5.1767893100.fd5003c: * Add documentation of APPEND variable * Add undocumented KERNEL/INITRD to the supported variables * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes ++++ os-autoinst: - Update to version 5.1767893100.fd5003c: * Add documentation of APPEND variable * Add undocumented KERNEL/INITRD to the supported variables * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes ++++ os-autoinst: - Update to version 5.1767893100.fd5003c: * Add documentation of APPEND variable * Add undocumented KERNEL/INITRD to the supported variables * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes ------------------------------------------------------------------ ------------------ 2026-1-7 - Jan 7 2026 ------------------- ------------------------------------------------------------------ ++++ samba: - samba-ad-dc-libs packages are missing a DLZ plugin for bind 9.20; (bso#15790); (bsc#1249058). ++++ curl: - Security fix: [bsc#1256105, CVE-2025-14017] * call ldap_init() before setting the options * Add patch curl-CVE-2025-14017.patch ++++ gimp: - Add gimp-CVE-2025-15059.patch: vulnerability in file-psp (CVE-2025-15059, ZDI-CAN-28232, bsc#1255766). ++++ gimp: - Add gimp-CVE-2025-15059.patch: vulnerability in file-psp (CVE-2025-15059, ZDI-CAN-28232, bsc#1255766). ++++ wget2: - Update to release 2.2.1 * Fix file overwrite issue with metalink [CVE-2025-69194] * Fix remote buffer overflow in get_local_filename_real() [CVE-2025-69195] * Fix a redirect/mirror regression from 400713ca * Use the local system timestamp when requested via - -no-use-server-timestamps * Prevent file truncation with --no-clobber * Improve messages about why URLs are not being followed * Fix metalink with -O/--output-document * Fix sorting of metalink mirrors by priority * Add --show-progress to improve backwards compatibility to wget * Fix buffer overflow in wget_iri_clone() after wget_iri_set_scheme() * Allow 'no_' prefix in config options * Use libnghttp2 for HTTP/2 testing * Set exit status to 8 on 403 response code * Fix convert-links * Fix --server-response for HTTP/1.1 ++++ selinux-policy: - Update to version 20250627+git345.3965b24b0: * Allow 'mysql-systemd-helper upgrade' to work correctly (bsc#1255024) ------------------------------------------------------------------ ------------------ 2026-1-6 - Jan 6 2026 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 143.0.7499.192 (boo#1256067): * CVE-2026-0628: Insufficient policy enforcement in WebView tag ++++ chromium: - Chromium 143.0.7499.192 (boo#1256067): * CVE-2026-0628: Insufficient policy enforcement in WebView tag ++++ chromium: - Chromium 143.0.7499.192 (boo#1256067): * CVE-2026-0628: Insufficient policy enforcement in WebView tag ++++ libheif: - security update - added patches CVE-2025-68431 [bsc#1255735], heap buffer over-read in `HeifPixelImage::overlay()` via crafted HEIF that exercises the overlay image item * libheif-CVE-2025-68431.patch ------------------------------------------------------------------ ------------------ 2026-1-5 - Jan 5 2026 ------------------- ------------------------------------------------------------------ ++++ libpcap: - Security fix: [bsc#1255765, CVE-2025-11961] * Fix out-of-bound-write and out-of-bound-read in pcap_ether_aton() due to missing validation of provided MAC-48 address string * Add libpcap-CVE-2025-11961.patch ++++ os-autoinst: - Update to version 5.1767623406.688dd0e: * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x ++++ os-autoinst: - Update to version 5.1767623406.688dd0e: * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x ++++ os-autoinst: - Update to version 5.1767623406.688dd0e: * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x ++++ os-autoinst: - Update to version 5.1767623406.688dd0e: * os-autoinst-generate-needle-preview: Embed PNG * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x ------------------------------------------------------------------ ------------------ 2026-1-2 - Jan 2 2026 ------------------- ------------------------------------------------------------------ ++++ curl: - Security fixes: * [bsc#1255731, CVE-2025-14524] if redirected, require permission to use bearer * [bsc#1255734, CVE-2025-15224] require private key or user-agent for public key auth * [bsc#1255732, CVE-2025-14819] toggling CURLSSLOPT_NO_PARTIALCHAIN makes a different CA cache * [bsc#1255733, CVE-2025-15079] set both knownhosts options to the same file * Add patches: - curl-CVE-2025-14524.patch - curl-CVE-2025-15224.patch - curl-CVE-2025-14819.patch - curl-CVE-2025-15079.patch ------------------------------------------------------------------ ------------------ 2025-12-31 - Dec 31 2025 ------------------- ------------------------------------------------------------------ ++++ matio: - update to version 1.5.29: * Fix printing rank-1-variable in Mat_VarPrint * Fix array index out of bounds in Mat_VarPrint when printing UTF-8 character data (boo#1239678, CVE-2025-2337) * Fix heap-based buffer overflow in strdup_vprintf (boo#1239677, CVE-2025-2338) * Changed Mat_VarPrint to print all values of rank-2-variable * Several other fixes, for example for access violations in Mat_VarPrint ------------------------------------------------------------------ ------------------ 2025-12-30 - Dec 30 2025 ------------------- ------------------------------------------------------------------ ++++ wget2: - Update to release 2.2.0 * Don't truncate file when -c and -O are combined * Don't log URI userinfo to logs * Fix downloading multiple files via HTTP/2 * Support connecting with HTTP/1.0 proxies * Ignore 1xx HTTP responses for HTTP/1.1 * Disable TCP Fast Open by default * Fix segfault when OCSP response is missing * Add libproxy support ------------------------------------------------------------------ ------------------ 2025-12-29 - Dec 29 2025 ------------------- ------------------------------------------------------------------ ++++ dracut: - Update to version 059+suse.717.g75494a30: Fix and update testsuite (bsc#1254873): * test(FULL-SYSTEMD): ignore errors in systemd-vconsole-setup.service * test: move /failed to /run/failed as rootfs might be read-only * test(FULL-SYSTEMD): use poweroff to shut down test * test(FULL SYSTEMD): no need to include dbus to the target rootfs * test: make the size of all test drives 512 MB * fix(systemd): move installation of libkmod to udev-rules module * test: switch to virtio for the QEMU drive * test: switch to virtio for the QEMU drive * test: increase test VM memory from 512M to 1024M to avoid OOM killer * test: move more common test code to test-functions * test: upgrade to ext4 Other: * fix(nfs): do not execute logic in nfs hooks if netroot is not nfs (bsc#1253960) ++++ knot: - update to version 3.5.2, see https://www.knot-dns.cz/2025-11-28-version-352.html ++++ trivy: - Update to version 0.68.2: * release: v0.68.2 [release/v0.68] (#9950) * fix(deps): bump alpine from `3.22.1` to `3.23.0` [backport: release/v0.68] (#9949) * ci: enable `check-latest` for `setup-go` [backport: release/v0.68] (#9946) ------------------------------------------------------------------ ------------------ 2025-12-23 - Dec 23 2025 ------------------- ------------------------------------------------------------------ ++++ buildah: - Add patch for CVE-2025-47914 (bsc#1254054), CVE-2025-47913 (bsc#1253598): * 0004-CVE-2025-47913-CVE-2025-47914-ssh-agent-fixes.patch - Rebase patches: * 0001-CVE-2025-22869-vendor-ssh-limit-the-size-of-the-inte.patch * 0002-run-handle-relabeling-bind-mounts-ourselves.patch * 0003-CVE-2025-52881-backport-subset-of-patch-from-runc.patch ------------------------------------------------------------------ ------------------ 2025-12-22 - Dec 22 2025 ------------------- ------------------------------------------------------------------ ++++ cpp-httplib: - Add CVE-2025-66570.patch * Fix CVE-2025-66570 (bsc#1254734) and CVE-2025-66577 (bsc#1254735) ------------------------------------------------------------------ ------------------ 2025-12-20 - Dec 20 2025 ------------------- ------------------------------------------------------------------ ++++ helmfile: - Update to version 1.2.3: * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.2 to 1.32.3 by @dependabot[bot] in #2308 * build(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 by @dependabot[bot] in #2310 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.92.1 to 1.93.0 by @dependabot[bot] in #2307 * Add parameter to render helmfile as go template without .gotmpl extension by @ronaldour in #2312 * build(deps): bump golang.org/x/sync from 0.18.0 to 0.19.0 by @dependabot[bot] in #2315 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.93.0 to 1.93.2 by @dependabot[bot] in #2323 * build(deps): bump k8s.io/apimachinery from 0.34.2 to 0.34.3 by @dependabot[bot] in #2322 * build(deps): bump golang.org/x/term from 0.37.0 to 0.38.0 by @dependabot[bot] in #2317 * build(deps): bump k8s.io/client-go from 0.34.2 to 0.34.3 by @dependabot[bot] in #2321 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.3 to 1.32.5 by @dependabot[bot] in #2320 * build(deps): bump helm.sh/helm/v3 from 3.19.2 to 3.19.3 by @dependabot[bot] in #2325 * build(deps): bump helm.sh/helm/v4 from 4.0.1 to 4.0.2 by @dependabot[bot] in #2326 * build(deps): bump actions/upload-artifact from 5 to 6 by @dependabot[bot] in #2331 * build(deps): bump helm.sh/helm/v3 from 3.19.3 to 3.19.4 by @dependabot[bot] in #2328 * build(deps): bump actions/download-artifact from 6 to 7 by @dependabot[bot] in #2332 * build(deps): bump dessant/lock-threads from 5 to 6 by @dependabot[bot] in #2330 * build(deps): bump helm.sh/helm/v4 from 4.0.3 to 4.0.4 by @dependabot[bot] in #2329 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.93.2 to 1.94.0 by @dependabot[bot] in #2333 * bump helm version to 4.0.4 by @yxxhero in #2335 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.5 to 1.32.6 by @dependabot[bot] in #2336 * build(deps): bump github.com/zclconf/go-cty-yaml from 1.1.0 to 1.2.0 by @dependabot[bot] in #2340 * build(deps): bump k8s.io/client-go from 0.34.3 to 0.35.0 by @dependabot[bot] in #2338 * fix: rewrite relative file:// chart dependencies to absolute paths by @sstarcher in #2334 ------------------------------------------------------------------ ------------------ 2025-12-19 - Dec 19 2025 ------------------- ------------------------------------------------------------------ ++++ busybox: - Fix tar hidden files via escape sequence (CVE-2025-46394, bsc#1241661) * 0001-archival-libarchive-sanitize-filenames-on-output-pre.patch - Fix HTTP request header injection in wget (CVE-2025-60876, bsc#1253245) * wget-don-t-allow-control-characters-in-url.patch - Set CONFIG_FIRST_SYSTEM_ID to 201 to avoid confclict (bsc#1236670) - Fix unshare -mrpf sh core dump on ppc64le (bsc#1249237) * 0001-nsenter-unshare-don-t-use-xvfork_parent_waits_and_ex.patch ++++ chromium: - Chromium 143.0.7499.169 (stable released 2025-12-18) * no cve listed yet ++++ chromium: - Chromium 143.0.7499.169 (stable released 2025-12-18) * no cve listed yet ++++ chromium: - Chromium 143.0.7499.169 (stable released 2025-12-18) * no cve listed yet ++++ openQA: - Update to version 5.1766150951.2799046e: * Coverage of openQA: add folder Client/ in codecov.yaml * Improve openQA coverage of _download_handler in Archive.pm ++++ openQA: - Update to version 5.1766150951.2799046e: * Coverage of openQA: add folder Client/ in codecov.yaml * Improve openQA coverage of _download_handler in Archive.pm ++++ openQA: - Update to version 5.1766150951.2799046e: * Coverage of openQA: add folder Client/ in codecov.yaml * Improve openQA coverage of _download_handler in Archive.pm ++++ terminology: - Update to 1.14.0: * New translations: Hungarian, Slovak * Report or Set Selection through escape codes * Handle Alternate Escape (7728) * Handle Application Escape Code * Add configuration whether emojis should be considered as double width. Default is double width. * Colorshemes: add GruvBox Material Dark * Translation updates for Chinese (Simplified), Catalan, Croatian, Dutch, Finnish, French, Indonesian, Japanese, Lithuanian, Polish, Portuguese, Portuguese (Brazil), Russian, Serbian, Spanish, Swedish, Turkish * Unify format of responses to OSC 10, 11 and 12 * Fix translucent background on startup * Fix wheel events emitted even if wheel has not moved * Do not use spaces when returning terminal name * Colorschemes: ensure metadata.name and file name are the same * Fix issue when exiting on *BSD * Do not interpret “CSI = 5 u” as DECRC * Handle empty CSI SRG 38/48 * Do not consider Key Resources as color * Build with Meson 0.59 or later * Cleanup the code base about misuse of calloc() * Testing on OSC 52 ------------------------------------------------------------------ ------------------ 2025-12-18 - Dec 18 2025 ------------------- ------------------------------------------------------------------ ++++ samba: - Adjust README.SUSE to reflect the new preferred location for '[printers]' share; (bsc#1254665). ++++ openQA: - Update to version 5.1766014013.377e64fe: * feat(Needle::Save): Adapt to new error handling * feat(OpenQA::Git): Make error handling more flexible with exceptions ++++ openQA: - Update to version 5.1766053374.57cdeee3: * fix(docs): Fix indentation in job template examples * feat(Needle::Save): Adapt to new error handling * feat(OpenQA::Git): Make error handling more flexible with exceptions ++++ openQA: - Update to version 5.1766053374.57cdeee3: * fix(docs): Fix indentation in job template examples * feat(Needle::Save): Adapt to new error handling * feat(OpenQA::Git): Make error handling more flexible with exceptions ++++ openQA: - Update to version 5.1766053374.57cdeee3: * fix(docs): Fix indentation in job template examples * feat(Needle::Save): Adapt to new error handling * feat(OpenQA::Git): Make error handling more flexible with exceptions ++++ os-autoinst: - Update to version 5.1766037062.44c7d2a: * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder ++++ os-autoinst: - Update to version 5.1766037062.44c7d2a: * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder ++++ os-autoinst: - Update to version 5.1766037062.44c7d2a: * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder ++++ os-autoinst: - Update to version 5.1766037062.44c7d2a: * Tweak curl call not to hang * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder ------------------------------------------------------------------ ------------------ 2025-12-17 - Dec 17 2025 ------------------- ------------------------------------------------------------------ ++++ webkit2gtk3-soup2: - Update to version 2.50.4 (bsc#1255183 bsc#1255191 bsc#1255194 bsc#1255195 bsc#1255198 bsc#1255200): + Correctly handle the program name passed to the sleep disabler. + Ensure GStreamer is initialized before using the Quirks. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531, CVE-2025-43535, CVE-2025-43536, CVE-2025-43541. - Add webkit2gtk3-a11y-fix-role-mapping.patch: fix a11y regression where AT-SPI roles were mapped incorrectly. ++++ webkit2gtk3: - Update to version 2.50.4 (bsc#1255183 bsc#1255191 bsc#1255194 bsc#1255195 bsc#1255198 bsc#1255200): + Correctly handle the program name passed to the sleep disabler. + Ensure GStreamer is initialized before using the Quirks. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531, CVE-2025-43535, CVE-2025-43536, CVE-2025-43541. - Add webkit2gtk3-a11y-fix-role-mapping.patch: fix a11y regression where AT-SPI roles were mapped incorrectly. ++++ webkit2gtk4: - Update to version 2.50.4 (bsc#1255183 bsc#1255191 bsc#1255194 bsc#1255195 bsc#1255198 bsc#1255200): + Correctly handle the program name passed to the sleep disabler. + Ensure GStreamer is initialized before using the Quirks. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531, CVE-2025-43535, CVE-2025-43536, CVE-2025-43541. - Add webkit2gtk3-a11y-fix-role-mapping.patch: fix a11y regression where AT-SPI roles were mapped incorrectly. ++++ chromium: - Chromium 143.0.7499.146 (boo#1255115): * CVE-2025-14765: Use after free in WebGPU * CVE-2025-14766: Out of bounds read and write in V8 ++++ chromium: - Chromium 143.0.7499.146 (boo#1255115): * CVE-2025-14765: Use after free in WebGPU * CVE-2025-14766: Out of bounds read and write in V8 ++++ chromium: - Chromium 143.0.7499.146 (boo#1255115): * CVE-2025-14765: Use after free in WebGPU * CVE-2025-14766: Out of bounds read and write in V8 ++++ chromium: - Chromium 143.0.7499.146 (boo#1255115): * CVE-2025-14765: Use after free in WebGPU * CVE-2025-14766: Out of bounds read and write in V8 ++++ samba: - Fix Samba printers reporting invalid sid during print jobs; (bsc#1234210); (bsc#1254926); (bso#15792). ++++ fcitx5: - Use return instead of exit in 20-fcitx-plasma-setup.sh * Fix boo#1255237 - Replace "IBus" with "Fcitx" in a log message ++++ man: - Extend tmpfiles template man-db.conf (jsc#PED-14862) * Create cache directories with systemd tmpfiles service ++++ os-autoinst: - Update to version 5.1765976654.0026f92: * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765976654.0026f92: * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765976654.0026f92: * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765976654.0026f92: * Fix opencv dependency due to upstream changes * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Improve documentation strings for get/check_var ++++ selinux-policy: - Update to version 20250627+git343.b66ec7135: * Allow snapper_tu_etc_plugin_t to connect to machined varlink socket (bsc#1254889) ------------------------------------------------------------------ ------------------ 2025-12-16 - Dec 16 2025 ------------------- ------------------------------------------------------------------ ++++ alloy: - update to 1.12.1: * Bug Fixes - update to Beyla 2.7.10 (#5019) (c149393) (@rafaelroquetto) ++++ apache2: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-devel: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-event: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-manual: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-prefork: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-utils: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ apache2-worker: - Fix the following bugs and CVEs: * bsc#1254511 / CVE-2025-55753 * bsc#1254512 / CVE-2025-58098 * bsc#1254514 / CVE-2025-65082 * bsc#1254515 / CVE-2025-66200 - Add patches: * CVE-2025-55753.patch * CVE-2025-58098.patch * CVE-2025-65082.patch * CVE-2025-66200.patch ++++ niri: - Fix portal notification proxy boo#1254975 * Backported niri-portals.conf from upstream ++++ openQA: - Update to version 5.1765887110.8fc02990: * Avoid partial deletion of a screenshot if Minion job is aborted * Add `SignalBlocker` to delay signal handling during critical sections ++++ openQA: - Update to version 5.1765887110.8fc02990: * Avoid partial deletion of a screenshot if Minion job is aborted * Add `SignalBlocker` to delay signal handling during critical sections ++++ openQA: - Update to version 5.1765887110.8fc02990: * Avoid partial deletion of a screenshot if Minion job is aborted * Add `SignalBlocker` to delay signal handling during critical sections ++++ openQA: - Update to version 5.1765887110.8fc02990: * Avoid partial deletion of a screenshot if Minion job is aborted * Add `SignalBlocker` to delay signal handling during critical sections ++++ os-autoinst: - Update to version 5.1765808557.b89e9b4: * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test ++++ os-autoinst: - Update to version 5.1765808557.b89e9b4: * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test ++++ os-autoinst: - Update to version 5.1765808557.b89e9b4: * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test ++++ os-autoinst: - Update to version 5.1765808557.b89e9b4: * Restore package builds on older openSUSE versions * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test ++++ scap-security-guide: - updated to 0.1.79 (jsc#ECO-3319) - Add rhcos4 Profile for BSI Grundschutz - Create SLE15 general profile - Fix crypto policy settings in RHEL CIS profiles - Remove deprecated CIS OpenShift 1.4.0 and 1.5.0 profiles - Remove OCP STIG V1R1 - Remove OCP STIG V2R1 - Various updates for SLE 12/15 ------------------------------------------------------------------ ------------------ 2025-12-15 - Dec 15 2025 ------------------- ------------------------------------------------------------------ ++++ erlang: - Update the ssh component to the latest in the maint-27 branch * Multiple fixes for Excessive Resource Consumption (bsc#1249469, bsc#1249470 bsc#1249472, CVE-2025-48038, CVE-2025-48039, CVE-2025-48040) * Other Minor fixes * feature-fix-update-ssh-stack.patch ++++ openQA: - Update to version 5.1765805960.2112d43d: * fix(codecov): Fix wrong casing for 'fully_covered' entries ++++ openQA: - Update to version 5.1765805960.2112d43d: * fix(codecov): Fix wrong casing for 'fully_covered' entries ++++ openQA: - Update to version 5.1765805960.2112d43d: * fix(codecov): Fix wrong casing for 'fully_covered' entries ++++ openQA: - Update to version 5.1765805960.2112d43d: * fix(codecov): Fix wrong casing for 'fully_covered' entries ++++ os-autoinst: - Update to version 5.1765804109.1e7c99a: * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765804109.1e7c99a: * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765804109.1e7c99a: * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var ++++ os-autoinst: - Update to version 5.1765804109.1e7c99a: * Remove `ShellCheck` from devel dependencies on s390x * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var ++++ python-jsonpickle: - Exclude testing with pandas on Leap 16.0 ++++ python-tornado6: - Add security patches: * CVE-2025-67724.patch (bsc#1254903) * CVE-2025-67725.patch (bsc#1254905) * CVE-2025-67726.patch (bsc#1254904) ++++ suse-module-tools: - Update to version 16.0.64: * udev rules: write block queue attributes only if necessary (bsc#1254928) ------------------------------------------------------------------ ------------------ 2025-12-13 - Dec 13 2025 ------------------- ------------------------------------------------------------------ ++++ labwc: - Fix layershell unmap segfault when no outputs left (boo#1254386, upstream gh#labwc/labwc#2576) * Backported 2577.patch from upstream ++++ qemu: - Update to version 10.0.7 Full backport list: https://lore.kernel.org/qemu-devel/1765037524.347582.2700543.nullmailer@tls.msk.ru/ Fixes: bsc#1253002 (CVE-2025-12464) bsc#1250984 (CVE-2025-11234) A selection of them is reported here below: kvm: Fix kvm_vm_ioctl() and kvm_device_ioctl() return value docs/devel: Update URL for make-pullreq script target/arm: Fix assert on BRA. hw/aspeed/{xdma, rtc, sdhci}: Fix endianness to DEVICE_LITTLE_ENDIAN hw/core/machine: Provide a description for aux-ram-share property hw/pci: Make msix_init take a uint32_t for nentries block/io_uring: avoid potentially getting stuck after resubmit at the end of ioq_submit() block-backend: Fix race when resuming queued requests ui/vnc: Fix qemu abort when query vnc info chardev/char-pty: Do not ignore chr_write() failures hw/display/exynos4210_fimd: Account for zero length in fimd_update_memory_section() hw/arm/armv7m: Disable reentrancy guard for v7m_sysreg_ns_ops MRs hw/arm/aspeed: Fix missing SPI IRQ connection causing DMA interrupt failure migration: Fix transition to COLO state from precopy - Other updates and bugfixes: * [openSUSE][RPM} spec: delete old specfile constructs * [openSUSE][RPM]: really fix *-virtio-gpu-pci dependency on ARM (bsc#1254286) * [openSUSE][RPM] spec: make glusterfs support conditional (bsc#1254494) ++++ qemu-linux-user: - Update to version 10.0.7 Full backport list: https://lore.kernel.org/qemu-devel/1765037524.347582.2700543.nullmailer@tls.msk.ru/ Fixes: bsc#1253002 (CVE-2025-12464) bsc#1250984 (CVE-2025-11234) A selection of them is reported here below: kvm: Fix kvm_vm_ioctl() and kvm_device_ioctl() return value docs/devel: Update URL for make-pullreq script target/arm: Fix assert on BRA. hw/aspeed/{xdma, rtc, sdhci}: Fix endianness to DEVICE_LITTLE_ENDIAN hw/core/machine: Provide a description for aux-ram-share property hw/pci: Make msix_init take a uint32_t for nentries block/io_uring: avoid potentially getting stuck after resubmit at the end of ioq_submit() block-backend: Fix race when resuming queued requests ui/vnc: Fix qemu abort when query vnc info chardev/char-pty: Do not ignore chr_write() failures hw/display/exynos4210_fimd: Account for zero length in fimd_update_memory_section() hw/arm/armv7m: Disable reentrancy guard for v7m_sysreg_ns_ops MRs hw/arm/aspeed: Fix missing SPI IRQ connection causing DMA interrupt failure migration: Fix transition to COLO state from precopy - Other updates and bugfixes: * [openSUSE][RPM} spec: delete old specfile constructs * [openSUSE][RPM]: really fix *-virtio-gpu-pci dependency on ARM (bsc#1254286) * [openSUSE][RPM] spec: make glusterfs support conditional (bsc#1254494) ++++ suse-migration-services: - Bump Migration changelog version: 2.1.29 - Fix mount_system unit The mount_system unit unconditionally bind mounts /run locations into the system to migrate. If the migration system doesn't provide these mountpoints e.g /run/NetworkManager on a SLE12-to-15 migration the mount_system unit fails and the entire migration fails because of this mandatory unit to fail. We really have to be more careful when writing DMS code. - Run ssh precheck only for SLE16 target The check for the ssh default settings change should only be performed for migrations to SLE16 ------------------------------------------------------------------ ------------------ 2025-12-12 - Dec 12 2025 ------------------- ------------------------------------------------------------------ ++++ rust1.92: - Add rust1.92 - Release notes can be found externally: https://github.com/rust-lang/rust/releases/tag/1.92.0 ++++ openldap2_6: - jsc#PED-13833 - Add limited support for libldap-2.4 library compatibility ++++ mariadb: - Update to 11.8.5: https://mariadb.com/docs/release-notes/community-server/11.8/11.8.5 https://mariadb.com/docs/release-notes/community-server/changelogs/11.8/11.8.5 https://mariadb.com/docs/release-notes/community-server/11.8/11.8.4 https://mariadb.com/docs/release-notes/community-server/changelogs/11.8/11.8.4 * fixes for the following security vulnerabilities: 11.8.5: CVE-2025-13699 (bsc#1254313) 11.8.4: none - Add %license tags to license files (bsc#1252162) - Add INSTALL_DOCREADMEDIR cmake flag to install readme and license files - Remove client plugin parsec.so, it is shipped by libmariadb_plugins (boo#1243040, boo#1254476) - Refresh fix-pamdir.patch - Update skipped test list ++++ openQA: - Update to version 5.1765535865.b566a24c: * fix(codecov): Be strict about coverage thresholds * Show jobs that have been cloned when `t` parameter is used on overview ++++ openQA: - Update to version 5.1765535865.b566a24c: * fix(codecov): Be strict about coverage thresholds * Show jobs that have been cloned when `t` parameter is used on overview ++++ openQA: - Update to version 5.1765535865.b566a24c: * fix(codecov): Be strict about coverage thresholds * Show jobs that have been cloned when `t` parameter is used on overview ++++ openQA: - Update to version 5.1765535865.b566a24c: * fix(codecov): Be strict about coverage thresholds * Show jobs that have been cloned when `t` parameter is used on overview ++++ os-autoinst: - Update to version 5.1765533145.a82864c: * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS ++++ os-autoinst: - Update to version 5.1765533145.a82864c: * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS ++++ os-autoinst: - Update to version 5.1765533145.a82864c: * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS ++++ os-autoinst: - Update to version 5.1765533145.a82864c: * Remove obsolete 'bin/' folder * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS ++++ selinux-policy: - Update to version 20250627+git341.4beeb2d65: * Allow virtlogd_t dac_override (bsc#1253389) * Introduce systemd_cryptsetup_generator_var_run_t file type (bsc#1244459) * Allow virtqemud_t to read/write device_t (bsc#1251789) * update support for polkit agent helper (bsc#1251931) * Allow system_mail_t read apache system content conditionally * Allow login_userdomain read lastlog * Allow sshd-net read and write to sshd vsock socket * Update ktls policy * Add comprehensive SELinux policy module for bwrap thumbnail generation * Revert "Allow thumb_t create permission in the user namespace" * Allow systemd-machined read svirt process state * Allow sshd_auth_t getopt/setopt on tcp_socket (bsc#1252992) * Allow sysadm access to TPM * Allow tlp get the attributes of the pidfs filesystem * Allow kmscon to read netlink_kobject_uevent_socket * Allow systemd-ssh-issue read kernel sysctls * fix: bz2279215 Allow speech-dispatcher access to user home/cache files * Allow create kerberos files in postgresql db home * Fix files_delete_boot_symlinks() to contain delete_lnk_files_pattern * Allow shell comamnds in locate systemd service (bsc#1246559) * Introduce initrc_nnp_daemon_domain interface * Label /var/lib/cosmic-greeter with xdm_var_lib_t * Allow setroubleshoot-fixit get attributes of xattr fs * Allow insights-client manage /etc symlinks * Allow insights-client get attributes of the rpm executable * Allow nfsidmapd search virt lib directories * Allow iotop stream connect to systemd-userdbd * Allow snapper_sdbootutil_plugin_t manage unlabeled_t files,dirs,symlinks (bsc#1252993) * Allow gnome-remote-desktop read sssd public files * Allow thumb_t stream connect to systemd-userdbd * Add auth_nnp_domtrans_chkpwd() * Allow sshd_auth_t getopt/setopt on tcp_socket (bsc#1252992) * Allow bluez dbus API passing unix domain sockets * Allow bluez dbus api pass sockets over dbus * Dontaudit systemd-generator connect to sssd over a unix stream socket * Allow init watch/watch_reads systemd-machined user ptys * Introduce sap_service_transition_to_unconfined_user boolean * allow init to read sap symlinks * Allow SAP domain to relocation text in all files - Switch internal tracking branch to slfo-1.2, we will start backporting from now on ++++ supportutils: - Changes to version 3.2.12 + Optimized lsof usage and honors OPTION_OFILES (bsc#1232351, PR#274) + Run in containers without errors (bsc#1245667, PR#272) + Removed pmap PID from memory.txt (bsc#1246011, PR#263) + Added missing /proc/pagetypeinfo to memory.txt (bsc#1246025, PR#264) + Improved database perforce with kGraft patching (bsc#1249657, PR#273) + Using last boot for journalctl for optimization (bsc#1250224, PR#287) + Fixed extraction failures (bsc#1252318, PR#275) + Update supportconfig.conf path in docs (bsc#1254425, PR#281) + drm_sub_info: Catch error when dir doesn't exist (PR#265) + Replace remaining `egrep` with `grep -E` (PR#261, PR#266) + Add process affinity to slert logs (PR#269) + Reintroduce cgroup statistics (and v2) (PR#270) + Minor changes to basic-health-check: improve information level (PR#271) + Collect important machine health counters (PR#276) + powerpc: collect hot-pluggable PCI and PHB slots (PR#278) + podman: collect podman disk usage (PR#279) + Exclude binary files in crondir (PR#282) + kexec/kdump: collect everything under /sys/kernel/kexec dir (PR#284) + Use short-iso for journalctl (PR#288) ++++ suse-migration-services: - Only generate wicked xml if service is the active network ------------------------------------------------------------------ ------------------ 2025-12-11 - Dec 11 2025 ------------------- ------------------------------------------------------------------ ++++ glib2: - Add CVE fixes: + glib2-CVE-2025-13601-1.patch, glib2-CVE-2025-13601-2.patch (bsc#1254297 CVE-2025-13601 glgo#GNOME/glib#3827). + glib2-CVE-2025-14087-1.patch, glib2-CVE-2025-14087-2.patch, glib2-CVE-2025-14087-3.patch (bsc#1254662 CVE-2025-14087 glgo#GNOME/glib#3834). + glib2-CVE-2025-14512.patch (bsc#1254878 CVE-2025-14512 glgo#GNOME/glib#3845). ++++ glib2-doc: - Add CVE fixes: + glib2-CVE-2025-13601-1.patch, glib2-CVE-2025-13601-2.patch (bsc#1254297 CVE-2025-13601 glgo#GNOME/glib#3827). + glib2-CVE-2025-14087-1.patch, glib2-CVE-2025-14087-2.patch, glib2-CVE-2025-14087-3.patch (bsc#1254662 CVE-2025-14087 glgo#GNOME/glib#3834). + glib2-CVE-2025-14512.patch (bsc#1254878 CVE-2025-14512 glgo#GNOME/glib#3845). ++++ python313-core: - Update to 3.13.11: - gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing (CVE-2025-12084, bsc#1254997). - gh-119451: Fix a potential memory denial of service in the http.client module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (bsc#1254400, CVE-2025-13836). - gh-119452: Fix a potential memory denial of service in the http.server module. When a malicious user is connected to the CGI server on Windows, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes. - Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). - Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Update to 3.13.10: - Tools/Demos - gh-141442: The iOS testbed now correctly handles test arguments that contain spaces. - Tests - gh-140482: Preserve and restore the state of stty echo as part of the test environment. - gh-140082: Update python -m test to set FORCE_COLOR=1 when being run with color enabled so that unittest which is run by it with redirected output will output in color. - gh-136442: Use exitcode 1 instead of 5 if unittest.TestCase.setUpClass() raises an exception - Security - gh-139700: Check consistency of the zip64 end of central directory record. Support records with “zip64 extensible data” if there are no bytes prepended to the ZIP file. (CVE-2025-8291, bsc#1251305) - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. - gh-136065: Fix quadratic complexity in os.path.expandvars() (CVE-2025-6075, bsc#1252974). - gh-119342: Fix a potential memory denial of service in the plistlib module. When reading a Plist file received from untrusted source, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (CVE-2025-13837, bsc#1254401). - Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. - IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. - Documentation - gh-141994: xml.sax.handler: Make Documentation of xml.sax.handler.feature_external_ges warn of opening up to external entity attacks. Patch by Sebastian Pipping. - gh-140578: Remove outdated sencence in the documentation for multiprocessing, that implied that concurrent.futures.ThreadPoolExecutor did not exist. - Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. - C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. - Remove upstreamed patches: - CVE-2025-13836-http-resp-cont-len.patch - CVE-2025-8291-consistency-zip64.patch - CVE-2025-6075-expandvars-perf-degrad.patch ++++ python313-nogil-nogil-core: - Update to 3.13.11: - gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing (CVE-2025-12084, bsc#1254997). - gh-119451: Fix a potential memory denial of service in the http.client module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (bsc#1254400, CVE-2025-13836). - gh-119452: Fix a potential memory denial of service in the http.server module. When a malicious user is connected to the CGI server on Windows, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes. - Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). - Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Update to 3.13.10: - Tools/Demos - gh-141442: The iOS testbed now correctly handles test arguments that contain spaces. - Tests - gh-140482: Preserve and restore the state of stty echo as part of the test environment. - gh-140082: Update python -m test to set FORCE_COLOR=1 when being run with color enabled so that unittest which is run by it with redirected output will output in color. - gh-136442: Use exitcode 1 instead of 5 if unittest.TestCase.setUpClass() raises an exception - Security - gh-139700: Check consistency of the zip64 end of central directory record. Support records with “zip64 extensible data” if there are no bytes prepended to the ZIP file. (CVE-2025-8291, bsc#1251305) - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. - gh-136065: Fix quadratic complexity in os.path.expandvars() (CVE-2025-6075, bsc#1252974). - gh-119342: Fix a potential memory denial of service in the plistlib module. When reading a Plist file received from untrusted source, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (CVE-2025-13837, bsc#1254401). - Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. - IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. - Documentation - gh-141994: xml.sax.handler: Make Documentation of xml.sax.handler.feature_external_ges warn of opening up to external entity attacks. Patch by Sebastian Pipping. - gh-140578: Remove outdated sencence in the documentation for multiprocessing, that implied that concurrent.futures.ThreadPoolExecutor did not exist. - Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. - C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. - Remove upstreamed patches: - CVE-2025-13836-http-resp-cont-len.patch - CVE-2025-8291-consistency-zip64.patch - CVE-2025-6075-expandvars-perf-degrad.patch ++++ nvidia-open-driver-G06-signed-cuda: - readded kernel-6.18.patch still needed for cuda driver version 580.105.08 - update non-CUDA variant to version 580.119.02 (boo#1254801) ++++ nvidia-open-driver-G06-signed: - readded kernel-6.18.patch still needed for cuda driver version 580.105.08 - update non-CUDA variant to version 580.119.02 (boo#1254801) ++++ openQA: - Update to version 5.1765469360.5c0525b5: * worker: Add coverage for OVS DBus checks * Fix overview when filtering by test and module result at the same time * Return signal as part of run_cmd result * Add scanner for untracked screenshots * KTAP: Properly hide details of a skipped subtest * docs: Restory logic of the sentence about NFT vs firewalld * docs: Clarify DHCP/RA availability on MM networks * feat: Allow to configure key+secret with env variables ++++ openQA: - Update to version 5.1765469360.5c0525b5: * worker: Add coverage for OVS DBus checks * Fix overview when filtering by test and module result at the same time * Return signal as part of run_cmd result * Add scanner for untracked screenshots * KTAP: Properly hide details of a skipped subtest * docs: Restory logic of the sentence about NFT vs firewalld * docs: Clarify DHCP/RA availability on MM networks * feat: Allow to configure key+secret with env variables ++++ openQA: - Update to version 5.1765469360.5c0525b5: * worker: Add coverage for OVS DBus checks * Fix overview when filtering by test and module result at the same time * Return signal as part of run_cmd result * Add scanner for untracked screenshots * KTAP: Properly hide details of a skipped subtest * docs: Restory logic of the sentence about NFT vs firewalld * docs: Clarify DHCP/RA availability on MM networks * feat: Allow to configure key+secret with env variables ++++ openQA: - Update to version 5.1765469360.5c0525b5: * worker: Add coverage for OVS DBus checks * Fix overview when filtering by test and module result at the same time * Return signal as part of run_cmd result * Add scanner for untracked screenshots * KTAP: Properly hide details of a skipped subtest * docs: Restory logic of the sentence about NFT vs firewalld * docs: Clarify DHCP/RA availability on MM networks * feat: Allow to configure key+secret with env variables ++++ os-autoinst: - Update to version 5.1765450253.f16e6ac: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1765450253.f16e6ac: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1765450253.f16e6ac: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1765450253.f16e6ac: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Improve documentation strings for get/check_var * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ python313: - Update to 3.13.11: - gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing (CVE-2025-12084, bsc#1254997). - gh-119451: Fix a potential memory denial of service in the http.client module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (bsc#1254400, CVE-2025-13836). - gh-119452: Fix a potential memory denial of service in the http.server module. When a malicious user is connected to the CGI server on Windows, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes. - Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). - Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Update to 3.13.10: - Tools/Demos - gh-141442: The iOS testbed now correctly handles test arguments that contain spaces. - Tests - gh-140482: Preserve and restore the state of stty echo as part of the test environment. - gh-140082: Update python -m test to set FORCE_COLOR=1 when being run with color enabled so that unittest which is run by it with redirected output will output in color. - gh-136442: Use exitcode 1 instead of 5 if unittest.TestCase.setUpClass() raises an exception - Security - gh-139700: Check consistency of the zip64 end of central directory record. Support records with “zip64 extensible data” if there are no bytes prepended to the ZIP file. (CVE-2025-8291, bsc#1251305) - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. - gh-136065: Fix quadratic complexity in os.path.expandvars() (CVE-2025-6075, bsc#1252974). - gh-119342: Fix a potential memory denial of service in the plistlib module. When reading a Plist file received from untrusted source, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (CVE-2025-13837, bsc#1254401). - Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. - IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. - Documentation - gh-141994: xml.sax.handler: Make Documentation of xml.sax.handler.feature_external_ges warn of opening up to external entity attacks. Patch by Sebastian Pipping. - gh-140578: Remove outdated sencence in the documentation for multiprocessing, that implied that concurrent.futures.ThreadPoolExecutor did not exist. - Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. - C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. - Remove upstreamed patches: - CVE-2025-13836-http-resp-cont-len.patch - CVE-2025-8291-consistency-zip64.patch - CVE-2025-6075-expandvars-perf-degrad.patch ++++ python313-documentation: - Update to 3.13.11: - gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing (CVE-2025-12084, bsc#1254997). - gh-119451: Fix a potential memory denial of service in the http.client module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (bsc#1254400, CVE-2025-13836). - gh-119452: Fix a potential memory denial of service in the http.server module. When a malicious user is connected to the CGI server on Windows, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes. - Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). - Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Update to 3.13.10: - Tools/Demos - gh-141442: The iOS testbed now correctly handles test arguments that contain spaces. - Tests - gh-140482: Preserve and restore the state of stty echo as part of the test environment. - gh-140082: Update python -m test to set FORCE_COLOR=1 when being run with color enabled so that unittest which is run by it with redirected output will output in color. - gh-136442: Use exitcode 1 instead of 5 if unittest.TestCase.setUpClass() raises an exception - Security - gh-139700: Check consistency of the zip64 end of central directory record. Support records with “zip64 extensible data” if there are no bytes prepended to the ZIP file. (CVE-2025-8291, bsc#1251305) - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. - gh-136065: Fix quadratic complexity in os.path.expandvars() (CVE-2025-6075, bsc#1252974). - gh-119342: Fix a potential memory denial of service in the plistlib module. When reading a Plist file received from untrusted source, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (CVE-2025-13837, bsc#1254401). - Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. - IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. - Documentation - gh-141994: xml.sax.handler: Make Documentation of xml.sax.handler.feature_external_ges warn of opening up to external entity attacks. Patch by Sebastian Pipping. - gh-140578: Remove outdated sencence in the documentation for multiprocessing, that implied that concurrent.futures.ThreadPoolExecutor did not exist. - Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. - C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. - Remove upstreamed patches: - CVE-2025-13836-http-resp-cont-len.patch - CVE-2025-8291-consistency-zip64.patch - CVE-2025-6075-expandvars-perf-degrad.patch ++++ python313-nogil: - Update to 3.13.11: - gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing (CVE-2025-12084, bsc#1254997). - gh-119451: Fix a potential memory denial of service in the http.client module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (bsc#1254400, CVE-2025-13836). - gh-119452: Fix a potential memory denial of service in the http.server module. When a malicious user is connected to the CGI server on Windows, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes. - Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). - Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Update to 3.13.10: - Tools/Demos - gh-141442: The iOS testbed now correctly handles test arguments that contain spaces. - Tests - gh-140482: Preserve and restore the state of stty echo as part of the test environment. - gh-140082: Update python -m test to set FORCE_COLOR=1 when being run with color enabled so that unittest which is run by it with redirected output will output in color. - gh-136442: Use exitcode 1 instead of 5 if unittest.TestCase.setUpClass() raises an exception - Security - gh-139700: Check consistency of the zip64 end of central directory record. Support records with “zip64 extensible data” if there are no bytes prepended to the ZIP file. (CVE-2025-8291, bsc#1251305) - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. - gh-136065: Fix quadratic complexity in os.path.expandvars() (CVE-2025-6075, bsc#1252974). - gh-119342: Fix a potential memory denial of service in the plistlib module. When reading a Plist file received from untrusted source, it could cause an arbitrary amount of memory to be allocated. This could have led to symptoms including a MemoryError, swapping, out of memory (OOM) killed processes or containers, or even system crashes (CVE-2025-13837, bsc#1254401). - Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. - IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. - Documentation - gh-141994: xml.sax.handler: Make Documentation of xml.sax.handler.feature_external_ges warn of opening up to external entity attacks. Patch by Sebastian Pipping. - gh-140578: Remove outdated sencence in the documentation for multiprocessing, that implied that concurrent.futures.ThreadPoolExecutor did not exist. - Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. - C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. - Remove upstreamed patches: - CVE-2025-13836-http-resp-cont-len.patch - CVE-2025-8291-consistency-zip64.patch - CVE-2025-6075-expandvars-perf-degrad.patch ++++ suse-migration-services: - Fix unit link check and no use of path.join Checking the unit link must be done with islink() because exists() follows the link which is not correct when checking on behalf of /system-root. For the same reason os.path.join should not be used for link targets not resolvable in the context of the caller. - Fixed migration live image package requires When the containment rpm package, packages the live migration ISO image into an rpm package it also adds the run_migration tool to the package. The latest changes to run_migration code however also requires the new suse-migration-scripts package which was not yet required. This commit fixes it ------------------------------------------------------------------ ------------------ 2025-12-10 - Dec 10 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaThunderbird: - Mozilla Thunderbird 140.6.0 ESR MFSA 2025-96 (bsc#1254551) * CVE-2025-14321 (bmo#1992760) Use-after-free in the WebRTC: Signaling component * CVE-2025-14322 (bmo#1996473) Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component * CVE-2025-14323 (bmo#1996555) Privilege escalation in the DOM: Notifications component * CVE-2025-14324 (bmo#1996840) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14325 (bmo#1998050) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14328 (bmo#1996761) Privilege escalation in the Netmonitor component * CVE-2025-14329 (bmo#1997018) Privilege escalation in the Netmonitor component * CVE-2025-14330 (bmo#1997503) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14331 (bmo#2000218) Same-origin policy bypass in the Request Handling component * CVE-2025-14333 (bmo#1966501, bmo#1997639) Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 ++++ chromium: - Chromium 143.0.7499.109 (boo#1254776): * CVE-2025-14372: Use after free in Password Manager * CVE-2025-14373: Inappropriate implementation in Toolbar * CVE-2025-14174: Out of bounds memory access in ANGLE - added patch gtk-414-2.patch (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4 for older gtk versions) ++++ chromium: - Chromium 143.0.7499.109 (boo#1254776): * CVE-2025-14372: Use after free in Password Manager * CVE-2025-14373: Inappropriate implementation in Toolbar * CVE-2025-14174: Out of bounds memory access in ANGLE - added patch gtk-414-2.patch (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4 for older gtk versions) ++++ chromium: - Chromium 143.0.7499.109 (boo#1254776): * CVE-2025-14372: Use after free in Password Manager * CVE-2025-14373: Inappropriate implementation in Toolbar * CVE-2025-14174: Out of bounds memory access in ANGLE - added patch gtk-414-2.patch (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4 for older gtk versions) ++++ chromium: - Chromium 143.0.7499.109 (boo#1254776): * CVE-2025-14372: Use after free in Password Manager * CVE-2025-14373: Inappropriate implementation in Toolbar * CVE-2025-14174: Out of bounds memory access in ANGLE - added patch gtk-414-2.patch (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4 for older gtk versions) ++++ kernel-64kb: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-default: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-rt: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ dtb-aarch64: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-source: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-docs: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-kvmsmall: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-obs-build: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-obs-qa: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-syms: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ kernel-zfcpdump: - exfat: fix refcount leak in exfat_find (git-fixes). - commit eb1ffd0 - mm/hugetlb: unshare page tables during VMA split, not before (bsc#1245431 CVE-2025-38084 bsc#1245498). - commit ae3cd1c - i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes). - i2c: i2c.h: fix a bad kernel-doc line (git-fixes). - platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes). - platform/x86:intel/pmc: Update Arrow Lake telemetry GUID (git-fixes). - commit 73f17dd ++++ ranger: - Adding 'Source100: README.md' as the README is suggested at src.opensuse.org setup, otherwise get the following message: * "Attention, "README.md" is not mentioned in spec files as source or patch." ++++ selinux-policy: - Fix macros.selinux-policy to allow changing booleans when policy is not loaded. Previous logic was broken (bsc#1254395) ++++ suse-migration-services: - Update setup_host_network service So far the service to clone the network setup from the host into the live migration system was only able to replicate the standard network setup from data in /etc/sysconfig/network. This patch makes the service to also replicate NetworkManager connections if NetworkManager is the active networking setup on the host to migrate. In addition the wicked-to-networkmanager migration only runs if wicked is the active networking setup on the host to migrate. This covers the following use cases: 1. SLE15 to SLE16 migration if the (sle15)host to migrate is NetworkManager based 2. SLE16 to SLE_next_generation where NetworkManager is the default This does NOT cover the SLE12 to SLE15 migration if the (sle12)host is NetworkManager based. That's because the SLE15 migration live images are not NetworkManager based and cannot setup the network even with the bind mounted etc/NetworkManager data. ------------------------------------------------------------------ ------------------ 2025-12-9 - Dec 9 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-default: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-rt: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ dtb-aarch64: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-source: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-docs: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-kvmsmall: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-obs-build: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-obs-qa: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-syms: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ kernel-zfcpdump: - smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256, CVE-2025-38728). - commit 0f61287 - mount: handle NULL values in mnt_ns_release() (bsc#1254308) - commit 08256f9 - smb: Log an error when close_all_cached_dirs fails (bsc#1246328, CVE-2025-38321). - commit c5a4d00 - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (bsc#1245431 CVE-2025-38085 bsc#1245499). - commit 50d9103 - arm64: mte: Do not warn if the page is already tagged in (git-fixes) - commit 52c9758 - arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes) - commit 2f61b01 - arm64: zynqmp: Disable coresight by default (git-fixes) - commit 11d63c1 - arm64: dts: broadcom: bcm2712: Add default GIC address cells (git-fixes) - commit 3096bdd - arm64: sysreg: Correct sign definitions for EIESB and DoubleLock (git-fixes) - commit 525b723 - dm-verity: fix unreliable memory allocation (git-fixes). - commit 75249b6 - spi: tegra210-quad: Check hardware status on timeout (bsc#1253155) - commit a1e793f - spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155) - commit 97a9820 - spi: tegra210-quad: Fix timeout handling (bsc#1253155) - commit c86dba3 - spi: tegra210-qspi: Remove cache operations (git-fixes) - commit 56b11a7 - spi: tegra210-quad: Add support for internal DMA (git-fixes) - commit 908f7ec - spi: tegra210-quad: Update dummy sequence configuration (git-fixes) - commit 3b335f9 - KVM: arm64: Check the untrusted offset in FF-A memory share (git-fixes). - commit eba1e78 - mm/hugetlb: fix folio is still mapped when deleted (CVE-2025-40006 bsc#1252342). - commit 8661a60 - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller (CVE-2025-40157 bsc#1253423). - commit bbd1520 - docs: hwmon: fix link to g762 devicetree binding (git-fixes). - hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes). - pinctrl: single: Fix incorrect type for error return variable (git-fixes). - pinctrl: renesas: rzg2l: Fix PMC restore (git-fixes). - pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes). - phy: rockchip: samsung-hdptx: Prevent Inter-Pair Skew from exceeding the limits (git-fixes). - phy: rockchip: samsung-hdptx: Reduce ROPLL loop bandwidth (git-fixes). - phy: freescale: Initialize priv->lock (git-fixes). - phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes). - phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes). - commit 577e522 - kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths (CVE-2025-40201 bsc#1253455). - commit 2e63b63 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. - Refresh patches.suse/sched-fair-Have-SD_SERIALIZE-affect-newidle-balancing.patch. - Refresh patches.suse/sched-fair-Proportional-newidle-balance.patch. - Refresh patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. - Refresh patches.suse/sched-fair-Revert-max_newidle_lb_cost-bump.patch. - Refresh patches.suse/sched-fair-Skip-sched_balance_running-cmpxchg-when-balance-is-not-due.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-sched_balance_newidle.patch. - Refresh patches.suse/sched-fair-Small-cleanup-to-update_newidle_cost.patch. Update upstream status and move to sorted section. - commit 16fa696 - mm: hugetlb: avoid soft lockup when mprotect to large memory area (CVE-2025-40153 bsc#1253408). - commit 7bc4acd - perf list: Add IBM z17 event descriptions (jsc#PED-13611). - commit f62e448 ++++ keylime: - Update to version 7.13.0+40 (CVE-2025-13609, bsc#1254199): * Fix registrar duplicate UUID vulnerability (#1825) * [Automatic] Update Keylime base image 2025-12-01 * Include new attestation information fields (#1818) * Fix Database race conditions and SQLAlchemy 2.0 compatibility (#1823) * ci: add push model tests to the packit plan * push-model: require HTTPS for authentication and attestation endpoints * Fix operational_state tracking in push mode attestations * templates: add push model authentication config options to 2.5 templates * Improve test coverage for authentication components * Security: Hash authentication tokens in logs * Fix stale IMA policy cache in verification * Fix authentication behavior on failed attestations for push mode * Add shared memory infrastructure for multiprocess communication * Add agent authentication (challenge/response) protocol for push mode * Convert CRLF to LF line endings in attestation_controller.py * Add agent-driven (push) attestation protocol with PULL mode regression fixes (#1814) * [Automatic] Update Keylime base image (2025-11-01) (#1816) * docs: Fix man page RST formatting for rst2man compatibility (#1813) * tests: Enable more tests in CI * Apply limit on keylime-policy workers * tpm: fix ECC signature parsing to support variable-length coordinates * tpm: fix ECC P-521 credential activation with consistent marshaling * tpm: fix ECC P-521 coordinate validation * tests: Test keylime-policy both for filelist-ext.xml match and mismatch (#1806) * [Automatic] Update Keylime base image 2025-10-01 * Remove deprecated disabled_signing_algorithms configuration option (#1804) * algorithms: add support for specific RSA algorithms * algorithms: add support for specific ECC curve algorithms * Update manages based on review feedback * Created manpage for keylime-policy and edited manpages for keylime verifier, registrar, agent * Manpage for keylime agent * Manpage for keylime verifier * Manpage for keylime registrar * Use constants for timeout and max retries defaults * tests: Add unit tests for the timeout configuration * verifier: Use timeout from `request_timeout` config option * revocation_notifier: Use timeout setting from config file * tenant: Set timeout when getting version from agent * verify/evidence: SEV-SNP evidence type/verifier * verify/evidence: Add evidence type to request JSON - Update to version v7.13.0: * Bump version to 7.13.0 * Avoid re-encoding certificate stored in DB * Revert "models: Do not re-encode certificate stored in DB" * Revert "registrar_agent: Use pyasn1 to parse PEM" * CI: Enable test add-agent-with-malformed-ek-cert * [Automatic] Update Keylime base image 2025-09-01 * policy/sign: use print() when writing to /dev/stdout * registrar_agent: Use pyasn1 to parse PEM * models: Do not re-encode certificate stored in DB * mba: normalize vendor_db in EV_EFI_VARIABLE_AUTHORITY events * Fix minor typo (exponantial->exponential) * mb: support vendor_db as logged by newer shim versions * mb: support EV_EFI_HANDOFF_TABLES events on PCR1 * Remove unnecessary configuration values * cloud_verifier_tornado: handle exception in notify_error() * requests_client: close the session at the end of the resource manager * Manpage for keylime_tenant (#1786) * Add 2.5 templates including Push Model changes * [Automatic] Update Keylime base image 2025-08-01 * Initial version of verify evidence API * packit: Enable connection leak test in CI * db: Do not read pool size and max overflow for sqlite * Use context managers to close DB sessions * revocations: Try to send notifications on shutdown * verifier: Gracefully shutdown on signal * [Automatic] Update Keylime base image 2025-07-01 * Use `fork` as `multiprocessing` start method * Fix inaccuracy in threat model and add reference to SBAT * Explain TPM properties and expand vTPM discussion * Misc formatting fixes * Add diagrams and tweak formatting * Fix formatting issues * Fix invalid RST and update TOC * Expand threat model page to include adversarial model * CI: Enable CONTAINER_ENGINE to allow other engines * Add --push-model option to avoid requests to agents * [Automatic] Update Keylime base image 2025-06-04 * docker: Remove tpm2-tools compilation from base image * tests: fix rpm repo tests from create-runtime-policy * tests: skip measured-boot related tests for s390x and ppc64le * templates: duplicate str_to_version() in the adjust script * policy: fix mypy issues with rpm_repo * revocation_notifier: fix mypy issue by replacing deprecated call * Fix create_runtime_policy in python < 3.12 * [Automatic] Update Keylime base image 2025-06-02 * Fix after review * fixed CONSTANT names C0103 errors * [Automatic] Update Keylime base image 2025-05-02 * [Automatic] Update Keylime base image 2025-04-04 * [Automatic] Update Keylime base image 2025-04-01 * Extend meta_data field in verifierdb * docs: update issue templates * docs: add GitHub PR template with documentation reminders * [Automatic] Update Keylime base image 2025-03-10 * tpm_util: fix quote signature extraction for ECDSA * packit: Add compatibility/api_version_compatibility test * registrar: Log API versions during startup * lint: Fix mypy warnings * Remove excessive logging on exception * tests: change test_mba_parsing to not need keylime installed * scripts: Fix coverage information downloading script ++++ openQA: - Update to version 5.1765286149.3debb8ea: * KTAP: Don't increment parsed_lines_count in "SKIP" lines * KTAP: Define unparsed_lines and parsed_lines_count ++++ openQA: - Update to version 5.1765286149.3debb8ea: * KTAP: Don't increment parsed_lines_count in "SKIP" lines * KTAP: Define unparsed_lines and parsed_lines_count ++++ openQA: - Update to version 5.1765286149.3debb8ea: * KTAP: Don't increment parsed_lines_count in "SKIP" lines * KTAP: Define unparsed_lines and parsed_lines_count ++++ openQA: - Update to version 5.1765286149.3debb8ea: * KTAP: Don't increment parsed_lines_count in "SKIP" lines * KTAP: Define unparsed_lines and parsed_lines_count ++++ os-autoinst: - Update to version 5.1765311639.7e3a762: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests ++++ os-autoinst: - Update to version 5.1765311639.7e3a762: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests ++++ os-autoinst: - Update to version 5.1765311639.7e3a762: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests ++++ os-autoinst: - Update to version 5.1765311639.7e3a762: * Simplify the code to increment the counter * audio: Allow for multiple audio recordings per test * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests ++++ suse-migration-services: - Fix backup processing The rsync call is done relative to the system-root path. This means that all files added to the files-from file for the rsync call must not be prefixed with that system-root path - Fix log handler setup Messages got duplicated if log streams are added multiple times to the logger instance. As such only add handlers if there are none. - Drop and backup /etc/sysconfig/network On successful wicked to NetworkManager migration the data in /etc/sysconfig/network is no longer needed. There will be a backup of the data available in /var/migration ------------------------------------------------------------------ ------------------ 2025-12-8 - Dec 8 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaFirefox: - Firefox Extended Support Release 140.6.0 ESR * Fixed: Various security fixes. MFSA 2025-94 (bsc#1254551) * CVE-2025-14321 (bmo#1992760) Use-after-free in the WebRTC: Signaling component * CVE-2025-14322 (bmo#1996473) Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component * CVE-2025-14323 (bmo#1996555) Privilege escalation in the DOM: Notifications component * CVE-2025-14324 (bmo#1996840) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14325 (bmo#1998050) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14328 (bmo#1996761) Privilege escalation in the Netmonitor component * CVE-2025-14329 (bmo#1997018) Privilege escalation in the Netmonitor component * CVE-2025-14330 (bmo#1997503) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14331 (bmo#2000218) Same-origin policy bypass in the Request Handling component * CVE-2025-14333 (bmo#1966501, bmo#1997639) Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 ++++ MozillaFirefox: - Firefox Extended Support Release 140.6.0 ESR * Fixed: Various security fixes. MFSA 2025-94 (bsc#1254551) * CVE-2025-14321 (bmo#1992760) Use-after-free in the WebRTC: Signaling component * CVE-2025-14322 (bmo#1996473) Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component * CVE-2025-14323 (bmo#1996555) Privilege escalation in the DOM: Notifications component * CVE-2025-14324 (bmo#1996840) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14325 (bmo#1998050) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14328 (bmo#1996761) Privilege escalation in the Netmonitor component * CVE-2025-14329 (bmo#1997018) Privilege escalation in the Netmonitor component * CVE-2025-14330 (bmo#1997503) JIT miscompilation in the JavaScript Engine: JIT component * CVE-2025-14331 (bmo#2000218) Same-origin policy bypass in the Request Handling component * CVE-2025-14333 (bmo#1966501, bmo#1997639) Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 ++++ kernel-64kb: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-default: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-rt: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ dtb-aarch64: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-source: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-docs: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-kvmsmall: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-livepatch-SLE16_Update_2: - Add IBS _buildenv files + update PATCHINFO_ID after the initial submission - commit 9db6dd0 ++++ kernel-obs-build: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-obs-qa: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-syms: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ kernel-zfcpdump: - powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187). - commit 9c0821c - idpf: cleanup remaining SKBs in PTP flows (CVE-2025-40175 bsc#1253426). - commit 659c3f9 - Update kvmsmall config files. disable more NET_VENDOR, no actual change AMD ASIX DAVICOM ENGLEDER FUNGIBLE I825XX LITEX META PENSANDO REALTEK VERTEXCOM WANGXUN - commit 7e6a292 - i3c: master: svc: Prevent incomplete IBI transaction (git-fixes). - i3c: fix refcount inconsistency in i3c_master_register (git-fixes). - clk: qcom: Mark camcc_sm7150_hws static (git-fixes). - clk: qcom: camcc-sm7150: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes). - clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: qcom: camcc-sm8550: Specify Titan GDSC power domain as a parent to other (git-fixes). - clk: samsung: exynos-clkout: Assign .num before accessing .hws (git-fixes). - clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes). - clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes). - commit 05a94b3 ++++ mdadm: - Update to version 4.4+31.g541b40d3: * fix crash with homehost=none (bsc#1254541) ++++ openQA: - Update to version 5.1765217707.d6e697fd: * Test commenting on overview page together with TODO filter * Fix job IDs that are considered for mass-commenting on overview page ++++ openQA: - Update to version 5.1765217707.d6e697fd: * Test commenting on overview page together with TODO filter * Fix job IDs that are considered for mass-commenting on overview page ++++ openQA: - Update to version 5.1765217707.d6e697fd: * Test commenting on overview page together with TODO filter * Fix job IDs that are considered for mass-commenting on overview page ++++ openQA: - Update to version 5.1765217707.d6e697fd: * Test commenting on overview page together with TODO filter * Fix job IDs that are considered for mass-commenting on overview page ++++ python-Django: - Add security patches: * CVE-2025-64459.patch (bsc#1252926) * CVE-2025-13372.patch (bsc#1254437) * CVE-2025-64460.patch (bsc#1254437) ++++ suse-migration-services: - Skip migration if wicked is not the default network config service While wicked was the default network configuration code in SLE 15, NetworkManager was also available either via the Desktop Module or PackageHub. As such it is conceivable that a user does not have wicked on the system to be migrated. Check if wicked is setup to manage the network before attempting the migration to NetworkManager. - Add package_installed method This allows service units to individually check if a package exists prior adding it to the drop list. The drop_package method will no longer perform this sanity check. ++++ virtme: - Update to 1.40: * No significant change, this is just a very small hotfix release to solve a packaging problem introduced by a conflict with the new vng-mcp tool. * While at it, there're also some small improved hints in the MCP server, so that AI agents can better understand how to build the kernel using vng --build. ------------------------------------------------------------------ ------------------ 2025-12-7 - Dec 7 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-default: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-rt: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ dtb-aarch64: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-source: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-docs: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-kvmsmall: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-obs-build: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-obs-qa: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-syms: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ kernel-zfcpdump: - staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes). - usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes). - USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes). - USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes). - usb: phy: Initialize struct usb_phy list_head (git-fixes). - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes). - usb: dwc2: fix hang during suspend if set as peripheral (git-fixes). - usb: chaoskey: fix locking for O_NONBLOCK (git-fixes). - usb: dwc3: dwc3_power_off_all_roothub_ports: Use ioremap_np when required (git-fixes). - USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes). - intel_th: Fix error handling in intel_th_output_open (git-fixes). - comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes). - comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes). - comedi: check device's attached status in compat ioctls (git-fixes). - comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes). - mei: gsc: add dependency on Xe driver (git-fixes). - firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes). - interconnect: qcom: sdx75: Drop QPIC interconnect and BCM nodes (git-fixes). - interconnect: qcom: msm8996: add missing link to SLAVE_USB_HS (git-fixes). - interconnect: debugfs: Fix incorrect error handling for NULL path (git-fixes). - iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes). - iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes). - iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes). - firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes). - uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes). - fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes). - fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes). - fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes). - watchdog: starfive: Fix resource leak in probe error path (git-fixes). - watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes). - rpmsg: glink: fix rpmsg device leak (git-fixes). - iio: accel: bmc150: Fix irq assumption regression (stable-fixes). - usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes). - USB: serial: option: add support for Rolling RW101R-GL (stable-fixes). - USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes). - usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes). - usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes). - thunderbolt: Add support for Intel Wildcat Lake (stable-fixes). - drm/amd/display: Don't change brightness for disabled connectors (stable-fixes). - drm/amd/display: Check NULL before accessing (stable-fixes). - drm/amd/amdgpu: reserve vm invalidation engine for uni_mes (stable-fixes). - ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes). - usb: udc: Add trace event for usb_gadget_set_state (stable-fixes). - drm/i915/dp: Initialize the source OUI write timestamp always (stable-fixes). - commit 2fc138c ++++ suse-migration-services: - Backup drop_path data All data that are subject to a drop_path call will be collected and rsync backuped prior deletion. The target path for the backup data is in /var/migration/ISO_DATE/... This is related to #426 - Check if package exists prior drop When using drop_package, check if the package exists and only add it to the drop list if it does exist ------------------------------------------------------------------ ------------------ 2025-12-6 - Dec 6 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-default: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-rt: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ cmake-extras: - Add fix-filename-and-path-of-qmlplugindump.patch, support both qmlplugindump-qt5 and qmlplugindump-qt6 (boo#1254531) ++++ dtb-aarch64: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-source: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-docs: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-kvmsmall: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-obs-build: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-obs-qa: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-syms: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ kernel-zfcpdump: - soc: samsung: exynos-pmu: fix device leak on regmap lookup (git-fixes). - soc: apple: mailbox: fix device leak on lookup (git-fixes). - soc: amlogic: canvas: fix device leak on lookup (git-fixes). - soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes). - soc: qcom: pbs: fix device leak on lookup (git-fixes). - soc: qcom: ocmem: fix device leak on lookup (git-fixes). - firmware: qcom: tzmem: fix qcom_tzmem_policy kernel-doc (git-fixes). - firmware: imx: scu-irq: fix OF node leak in (git-fixes). - soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes). - soc/tegra: fuse: Do not register SoC device on ACPI boot (git-fixes). - sysctl: fix kernel-doc format warning (git-fixes). - commit f44d471 ++++ openQA: - Update to version 5.1765009312.be30f6e0: * README: Remove left-over empty badge reference ++++ openQA: - Update to version 5.1765009312.be30f6e0: * README: Remove left-over empty badge reference ++++ openQA: - Update to version 5.1765009312.be30f6e0: * README: Remove left-over empty badge reference ++++ openQA: - Update to version 5.1765009312.be30f6e0: * README: Remove left-over empty badge reference ++++ suse-migration-services: - Fixed use of suse version macros There is no sle_version macro on SLE16. The way the spec file used the version macro causes a failed build. This commit fixes it ------------------------------------------------------------------ ------------------ 2025-12-5 - Dec 5 2025 ------------------- ------------------------------------------------------------------ ++++ alloy: - update to 1.12.0: * Breaking changes - prometheus.exporter.blackbox, prometheus.exporter.snmp and prometheus.exporter.statsd now use the component ID instead of the hostname as - their instance label in their exported metrics. This is a consequence of a bug fix that could lead to missing data when using the exporter - with clustering. If you would like to retain the previous behaviour, you can use discovery.relabel with action = "replace" rule to - set the instance label to sys.env("HOSTNAME"). (@thampiotr) * Security - CVE-2025-47911: Upgrade golang.org/x/net/html to fix various algorithms with quadratic complexity when parsing HTML documents (bsc#1251509) - CVE-2025-58190: Upgrade golang.org/x/net/html to fix excessive memory consumption by `html.ParseFragment` when processing specially crafted input (bsc#1251716) - CVE-2025-47913: Upgrade golang.org/x/crypto to fix client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253609) * Features - (Experimental) Add an otelcol.receiver.cloudflare component to receive - logs pushed by Cloudflare's LogPush jobs. (@x1unix) - (Experimental) Additions to experimental database_observability.mysql component: - explain_plans - collector now changes schema before returning the connection to the pool (@cristiangreco) - collector now passes queries more permissively, expressly to allow queries beginning in with (@rgeyer) - enable explain_plans collector by default (@rgeyer) - (Experimental) Additions to experimental database_observability.postgres component: - explain_plans - added the explain plan collector (@rgeyer) - collector now passes queries more permissively, expressly to allow queries beginning in with (@rgeyer) - query_samples - add user field to wait events within query_samples collector (@gaantunes) - rework the query samples collector to buffer per-query execution state across scrapes and emit finalized entries (@gaantunes) - process turned idle rows to calculate finalization times precisely and emit first seen idle rows (@gaantunes) - query_details - escape queries coming from pg_stat_statements with quotes (@gaantunes) - enable explain_plans collector by default (@rgeyer) - safely generate server_id when UDP socket used for database connection (@matthewnolf) - add table registry and include "validated" in parsed table name logs (@fridgepoet) - Add otelcol.exporter.googlecloudpubsub community component to export metrics, traces, and logs to Google Cloud Pub/Sub topic. (@eraac) - Add structured_metadata_drop stage for loki.process to filter structured metadata. (@baurmatt) - Send remote config status to the remote server for the remotecfg service. (@erikbaranowski) - Send effective config to the remote server for the remotecfg service. (@erikbaranowski) - Add a stat_statements configuration block to the prometheus.exporter.postgres component to enable selecting both the query ID and the full SQL statement. The new block includes one option to enable statement selection, and another to configure the maximum length of the statement text. (@SimonSerrano) - Add truncate stage for loki.process to truncate log entries, label values, and structured_metadata values. (@dehaansa) - Add u_probe_links & load_probe configuration fields to alloy pyroscope.ebpf to extend configuration of the opentelemetry-ebpf-profiler to allow uprobe profiling and dynamic probing. (@luweglarz) - Add verbose_mode configuration fields to alloy pyroscope.ebpf to be enable ebpf-profiler verbose mode. (@luweglarz) - Add file_match block to loki.source.file for built-in file discovery using glob patterns. (@kalleep) - Add a regex argument to the structured_metadata stage in loki.process to extract labels matching a regular expression. (@timonegk) - OpenTelemetry Collector dependencies upgraded from v0.134.0 to v0.139.0. (@dehaansa) - All otelcol.receiver.* components leveraging an HTTP server can configure HTTP keep alive behavior with keep_alives_enabled. - All otelcol.exporter.* components providing the sending_queue > batch block have default batch values. - The otelcol.processor.k8sattributes component has support for extracting annotations from k8s jobs and daemonsets. - The otelcol.processor.resourcedecetion component supports nine new detectors. - The otelcol.exporter.kafka component supports partitioning logs by trace ID (partition_logs_by_trace_id) and configuring default behavior if topic does not exist (allow_auto_topic_creation). - The otelcol.receiver.kafka component has new configuration options max_partition_fetch_size, rack_id, and use_leader_epoch. - The otelcol.exporter.s3 component has new configuration options s3_base_prefix and s3_partition_timezone. - The otelcol.processor.servicegraph component now supports defining the maximum number of buckets for generated exponential histograms. - See the upstream [core][https://github.com/open-telemetry/opentelemetry-collector/blob/v0.139.0/CHANGELOG.md] and [contrib][https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/v0.139.0/CHANGELOG.md] changelogs for more details. - A new mimir.alerts.kubernetes component which discovers AlertmanagerConfig Kubernetes resources and loads them into a Mimir instance. (@ptodev) - Mark stage.windowsevent block in the loki.process component as GA. (@kgeckhart) * Enhancements - Add per-application rate limiting with the strategy attribute in the faro.receiver component, to prevent one application from consuming the rate limit quota of others. (@hhertout) - Add support of tls in components loki.source.(awsfirehose|gcplog|heroku|api) and prometheus.receive_http and pyroscope.receive_http. (@fgouteroux) - Remove SendSIGKILL=no from unit files and recommendations (@oleg-kozlyuk-grafana) - Reduce memory overhead of prometheus.remote_write's WAL by lowering the size of the allocated series storage. (@kgeckhart) - Reduce lock wait/contention on the labelstore.LabelStore by removing unecessary usage from prometheus.relabel. (@kgeckhart) - prometheus.exporter.postgres dependency has been updated to v0.18.1. This includes new stat_progress_vacuum and buffercache_summary collectors, as well as other bugfixes and enhancements. (@cristiangreco) - Update Beyla component to 2.7.8. (@grcevski) - Support delimiters in stage.luhn. (@dehaansa) - pyroscope.java: update async-profiler to 4.2 (@korniltsev-grafanista) - Improve debug info output from exported receivers (loki, prometheus and pyroscope). (@kalleep) - prometheus.exporter.unix: Add an arp config block to configure the ARP collector. (@ptodev) - prometheus.exporter.snowflake dependency has been updated to 20251016132346-6d442402afb2, which updates data ownership queries to use last_over_time for a 24 hour period. (@Dasomeone) - loki.source.podlogs now supports preserve_discovered_labels parameter to preserve discovered pod metadata labels for use by downstream components. (@QuentinBisson) - Rework underlying framework of Alloy UI to use Vite instead of Create React App. (@jharvey10) - Use POST requests for remote config requests to avoid hitting http2 header limits. (@tpaschalis) - loki.source.api during component shutdown will now reject all the inflight requests with status code 503 after graceful_shutdown_timeout has expired. (@kalleep) - kubernetes.discovery Add support for attaching namespace metadata. (@kgeckhart) - Add meta_cache_address to beyla.ebpf component. (@skl) * Bugfixes - Stop loki.source.kubernetes discarding log lines with duplicate timestamps. (@ciaranj) - Fix direction of arrows for pyroscope components in UI graph. (@dehaansa) - Only log EOF errors for syslog port investigations in loki.source.syslog as Debug, not Warn. (@dehaansa) - Fix prometheus.exporter.process ignoring the remove_empty_groups argument. (@mhamzahkhan) - Fix issues with "unknown series ref when trying to add exemplar" from prometheus.remote_write by allowing series ref links to be updated if they change. (@kgeckhart) - Fix loki.source.podlogs component to register the Kubernetes field index for spec.nodeName when node filtering is enabled, preventing "Index with name field:spec.nodeName does not exist" errors. (@QuentinBisson) - Fix issue in loki.source.file where scheduling files could take too long. (@kalleep) - Fix loki.write no longer includes internal labels __. (@matt-gp) - Fix missing native histograms custom buckets (NHCB) samples from prometheus.remote_write. (@krajorama) - otelcol.receiver.prometheus now supports mixed histograms if prometheus.scrape has honor_metadata set to true. (@ptodev) - A mixed histogram is one which has both classic and exponential buckets. - loki.source.file has better support for non-UTF-8 encoded files. (@ptodev) - A BOM will be taken into account if the file is UTF-16 encoded and encoding is set to UTF-16. (Not UTF-16BE or UTF-16LE) - The carriage return symbol in Windows log files with CLRF endings will no longer be part of the log line. - These bugs used to cause some logs to show up with Chinese characters. Notably, this would happen on MSSQL UTF-16 LE logs. - Fix the loki.write endpoint block's enable_http2 attribute to actually affect the client. HTTP2 was previously disabled regardless of configuration. (@dehaansa) - Optionally remove trailing newlines before appending entries in stage.multiline. (@dehaansa) - loki.source.api no longer drops request when relabel rules drops a specific stream. (@kalleep) ++++ kernel-64kb: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-default: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-rt: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ cmake-extras: - Fix filename and path of qmlplugindump-qt5 for openSUSE ++++ dtb-aarch64: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-source: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-docs: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-kvmsmall: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-obs-build: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-obs-qa: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-syms: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ kernel-zfcpdump: - net: phy: realtek: add defines for shadowed c45 standard registers (jsc#PED-14353). - commit 9b6cda5 - net: phy: realtek: add helper RTL822X_VND2_C22_REG (jsc#PED-14353). - commit f06f507 - net: phy: realtek: switch from paged to MMD ops in rtl822x functions (jsc#PED-14353). - commit b4b9148 - net: phy: move realtek PHY driver to its own subdirectory (jsc#PED-14353). - Refresh patches.suse/net-phy-realtek-always-clear-NBase-T-lpa.patch. - Refresh patches.suse/net-phy-realtek-clear-1000Base-T-lpa-if-link-is-down.patch. - Refresh patches.suse/net-phy-realtek-clear-master_slave_state-if-link-is-.patch. - commit e3f95b1 - net: phy: realtek: always clear NBase-T lpa (git-fixes). - net: phy: realtek: clear master_slave_state if link is down (git-fixes). - commit 0dd31d0 - net: phy: realtek: clear 1000Base-T lpa if link is down (git-fixes). - commit 07367d4 - net: phy: realtek: improve mmd register access for internal PHY's (jsc#PED-14353). - net: phy: realtek: use string choices helpers (jsc#PED-14353). - commit 7ae9fe3 - net: phy: realtek: clear 1000Base-T link partner advertisement (jsc#PED-14353). - net: phy: realtek: change order of calls in C22 read_status() (jsc#PED-14353). - net: phy: realtek: read duplex and gbit master from PHYSR register (jsc#PED-14353). - commit 4e4fcb4 - r8169: enable RTL8168H/RTL8168EP/RTL8168FP ASPM support (jsc#PED-14353). - r8169: switch away from deprecated pcim_iomap_table (jsc#PED-14353). - r8169: increase max jumbo packet size on RTL8125/RTL8126 (jsc#PED-14353). - r8169: add PHY c45 ops for MDIO_MMD_VENDOR2 registers (jsc#PED-14353). - r8169: add support for Intel Killer E5000 (jsc#PED-14353). - commit 1daed61 - r8169: adjust version numbering for RTL8126 (jsc#PED-14353). - Refresh patches.suse/r8169-set-EEE-speed-down-ratio-to-1.patch. - commit abf8121 - r8169: add support for RTL8125BP rev.b (jsc#PED-14353). - r8169: add support for RTL8125D rev.b (jsc#PED-14353). - r8169: remove support for chip version 11 (jsc#PED-14353). - r8169: remove unused flag RTL_FLAG_TASK_RESET_NO_QUEUE_WAKE (jsc#PED-14353). - r8169: use helper r8169_mod_reg8_cond to simplify rtl_jumbo_config (jsc#PED-14353). - r8169: align WAKE_PHY handling with r8125/r8126 vendor drivers (jsc#PED-14353). - r8169: improve rtl_set_d3_pll_down (jsc#PED-14353). - r8169: improve __rtl8169_set_wol (jsc#PED-14353). - r8169: remove leftover locks after reverted change (jsc#PED-14353). - r8169: improve initialization of RSS registers on RTL8125/RTL8126 (jsc#PED-14353). - r8169: align RTL8126 EEE config with vendor driver (jsc#PED-14353). - r8169: align RTL8125/RTL8126 PHY config with vendor driver (jsc#PED-14353). - r8169: align RTL8125 EEE config with vendor driver (jsc#PED-14353). - r8169: fix inconsistent indenting in rtl8169_get_eth_mac_stats (jsc#PED-14353). - r8169: enable EEE at 2.5G per default on RTL8125B (jsc#PED-14353). - r8169: remove rtl_dash_loop_wait_high/low (jsc#PED-14353). - r8169: avoid duplicated messages if loading firmware fails and switch to warn level (jsc#PED-14353). - r8169: replace custom flag with disable_work() et al (jsc#PED-14353). - r8169: don't take RTNL lock in rtl_task() (jsc#PED-14353). - r8169: implement additional ethtool stats ops (jsc#PED-14353). - r8169: remove original workaround for RTL8125 broken rx issue (jsc#PED-14353). - commit fd05f54 - Revert "drm/amd: Skip power ungate during suspend for VPE" (git-fixes). - commit 33847bb - PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes). - PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes). - PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes). - PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes). - efi: stmm: fix kernel-doc "bad line" warnings (git-fixes). - power: supply: apm_power: only unset own apm_get_power_status (git-fixes). - power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes). - power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes). - power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes). - power: supply: max17040: Check iio_read_channel_processed() return code (git-fixes). - power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes). - power: supply: rt5033_charger: Fix device node reference leaks (git-fixes). - Documentation: hid-alps: Fix packet format section headings (git-fixes). - HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes). - HID: logitech-dj: Add support for a new lightspeed receiver iteration (git-fixes). - HID: logitech-dj: Remove duplicate error logging (git-fixes). - backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes). - backlight: led-bl: Add devlink to supplier LEDs (git-fixes). - leds: rgb: leds-qcom-lpg: Don't enable TRILED when configuring PWM (git-fixes). - leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes). - leds: leds-lp50xx: Enable chip before any communication (git-fixes). - leds: Drop duplicate LEDS_EXPRESSWIRE config (git-fixes). - leds: leds-cros_ec: Skip LEDs without color components (git-fixes). - leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes). - leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes). - mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes). - mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes). - mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes). - mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes). - platform/x86: intel: chtwc_int33fe: don't dereference swnode args (git-fixes). - hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes). - hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes). - hwmon: (max6697) fix regmap leak on probe failure (git-fixes). - hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes). - spi: ch341: fix out-of-bounds memory access in ch341_transfer_one (git-fixes). - spi: airoha-snfi: en7523: workaround flash damaging if UART_TXD was short to GND (git-fixes). - spi: bcm63xx: drop wrong casts in probe() (git-fixes). - spi: tegra210-quad: Fix timeout handling (git-fixes). - regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes). - regulator: core: disable supply if enabling main regulator fails (git-fixes). - mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes). - mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes). - mtd: nand: relax ECC parameter validation check (git-fixes). - Revert "mtd: rawnand: marvell: fix layouts" (git-fixes). - mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes). - mtd: mtdpart: ignore error -ENOENT from parsers on subpartitions (git-fixes). - mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes). - pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes). - platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes). - ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes). - ASoC: codecs: wcd939x: fix regmap leak on probe failure (git-fixes). - ASoC: stm32: sai: fix OF node leak on probe (git-fixes). - ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes). - ASoC: stm32: sai: fix device leak on probe (git-fixes). - ASoC: codecs: lpass-tx-macro: fix SM6115 support (git-fixes). - ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes). - ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes). - ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes). - ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes). - ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes). - ASoC: fsl_xcvr: clear the channel status control memory (git-fixes). - ASoC: tas2781: correct the wrong period (git-fixes). - drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes). - drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes). - drm/panthor: Avoid adding of kernel BOs to extobj list (git-fixes). - drm/nouveau: restrict the flush page to a 32-bit address (git-fixes). - drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() (git-fixes). - drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes). - drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes). - drm/mediatek: Fix probe device leaks (git-fixes). - drm/mediatek: Fix probe memory leak (git-fixes). - drm/mediatek: Fix probe resource leaks (git-fixes). - drm/msm/a6xx: Improve MX rail fallback in RPMH vote init (git-fixes). - drm/msm/a6xx: Fix the gemnoc workaround (git-fixes). - drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes). - drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes). - drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes). - drm/msm/dpu: drop dpu_hw_dsc_destroy() prototype (git-fixes). - drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes). - drm/panthor: Fix potential memleak of vma structure (git-fixes). - drm/panthor: Fix UAF on kernel BO VA nodes (git-fixes). - drm/panthor: Fix race with suspend during unplug (git-fixes). - drm/panthor: Fix UAF race between device unplug and FW event processing (git-fixes). - drm/panthor: Fix group_free_queue() for partially initialized queues (git-fixes). - drm/panthor: Handle errors returned by drm_sched_entity_init() (git-fixes). - drm/imagination: Fix reference to devm_platform_get_and_ioremap_resource() (git-fixes). - accel/ivpu: Fix race condition when unbinding BOs (git-fixes). - drm: atmel-hlcdc: fix atmel_xlcdc_plane_setup_scaler() (git-fixes). - drm/vgem-fence: Fix potential deadlock on release (git-fixes). - accel/ivpu: Fix DCT active percent format (git-fixes). - drm/panel: visionox-rm69299: Don't clear all mode flags (git-fixes). - drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes). - gpu: host1x: Fix race in syncpt alloc/free (git-fixes). - media: rc: st_rc: Fix reset control resource leak (git-fixes). - media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes). - media: vpif_display: fix section mismatch (git-fixes). - media: vpif_capture: fix section mismatch (git-fixes). - media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes). - media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes). - media: mediatek: vcodec: Fix a reference leak in mtk_vcodec_fw_vpu_init() (git-fixes). - media: amphion: Cancel message work before releasing the VPU core (git-fixes). - media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes). - media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes). - media: platform: mtk-mdp3: fix device leaks at probe (git-fixes). - media: v4l2-mem2mem: Fix outdated documentation (git-fixes). - media: cec: Fix debugfs leak on bus_register() failure (git-fixes). - media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes). - media: pvrusb2: Fix incorrect variable used in trace message (git-fixes). - media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes). - media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes). - media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes). - media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes). - media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes). - media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes). - commit 695e096 ++++ libpng16: - security update - added patches CVE-2025-66293 [bsc#1254480], LIBPNG out-of-bounds read in png_image_read_composite * libpng16-CVE-2025-66293.patch ++++ libpng16: - security update - added patches CVE-2025-66293 [bsc#1254480], LIBPNG out-of-bounds read in png_image_read_composite * libpng16-CVE-2025-66293.patch ++++ suse-migration-services: - drop README_QA.rst The information has been added to the main README file ------------------------------------------------------------------ ------------------ 2025-12-4 - Dec 4 2025 ------------------- ------------------------------------------------------------------ ++++ webkit2gtk3-soup2: - Update to version 2.50.3 (bsc#1254473 bsc#1254498 bsc#1254509): + Fix seeking and looping of media elements that set the "loop" property. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-13947, CVE-2025-43421, CVE-2025-43458, CVE-2025-66287. - Drop webkit2gtk3-undefined-symbol.patch: fixed upstream. - Use %limit_build. Also define %dwz_low_mem_die_limit and %dwz_max_die_limit, similar to what we have in wpewebkit. This should simplify the logic for limiting jobs and will hopefully help with intermittent build failures. ++++ webkit2gtk3: - Update to version 2.50.3 (bsc#1254473 bsc#1254498 bsc#1254509): + Fix seeking and looping of media elements that set the "loop" property. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-13947, CVE-2025-43421, CVE-2025-43458, CVE-2025-66287. - Drop webkit2gtk3-undefined-symbol.patch: fixed upstream. - Use %limit_build. Also define %dwz_low_mem_die_limit and %dwz_max_die_limit, similar to what we have in wpewebkit. This should simplify the logic for limiting jobs and will hopefully help with intermittent build failures. ++++ webkit2gtk4: - Update to version 2.50.3 (bsc#1254473 bsc#1254498 bsc#1254509): + Fix seeking and looping of media elements that set the "loop" property. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-13947, CVE-2025-43421, CVE-2025-43458, CVE-2025-66287. - Drop webkit2gtk3-undefined-symbol.patch: fixed upstream. - Use %limit_build. Also define %dwz_low_mem_die_limit and %dwz_max_die_limit, similar to what we have in wpewebkit. This should simplify the logic for limiting jobs and will hopefully help with intermittent build failures. ++++ kernel-64kb: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-default: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-rt: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ dtb-aarch64: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-source: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-docs: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-kvmsmall: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-obs-build: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-obs-qa: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-syms: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ kernel-zfcpdump: - net: phy: aquantia: check for NVMEM deferral (git-fixes). - wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes). - wifi: ieee80211: correct FILS status codes (git-fixes). - mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes). - wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes). - wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes). - wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes). - wifi: mac80211: fix CMAC functions not handling errors (git-fixes). - net: phy: adin1100: Fix software power-down ready condition (git-fixes). - wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes). - wifi: ath12k: fix potential memory leak in ath12k_wow_arp_ns_offload() (git-fixes). - wifi: ath11k: fix peer HE MCS assignment (git-fixes). - wifi: ath11k: fix VHT MCS assignment (git-fixes). - wifi: ath11k: restore register window after global reset (git-fixes). - lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes). - Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes). - Documentation: tps6594-pfsm: Fix macro cross-reference syntax (git-fixes). - Documentation: mrvl-cn10k-dpi: Fix macro cross-reference syntax (git-fixes). - Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes). - docs: w1: fix w1-netlink invalid URL (git-fixes). - crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes). - crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes). - crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes). - crypto: hisilicon/qm - restore original qos values (git-fixes). - crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes). - crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes). - crypto: af_alg - zero initialize memory allocated via sock_kmalloc (git-fixes). - crypto: caam - Add check for kcalloc() in test_len() (git-fixes). - ima: Handle error code returned by ima_filter_rule_match() (git-fixes). - KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes). - commit 915eacb ++++ re2c: - package LICENSE and tag is as %license * fixes [bsc#1252224] ++++ suse-migration-services: - Update conditional requires per review ------------------------------------------------------------------ ------------------ 2025-12-3 - Dec 3 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-default: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-rt: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ dtb-aarch64: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-source: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-docs: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-kvmsmall: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-obs-build: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-obs-qa: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-syms: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ kernel-zfcpdump: - ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes). - ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes). - efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes). - commit 2215dd3 ++++ nvidia-open-driver-G06-signed-cuda: - kernel-6.18.patch * fixed build against kernel 6.18 ++++ nvidia-open-driver-G06-signed: - kernel-6.18.patch * fixed build against kernel 6.18 ++++ trivy: - Update to version 0.68.1: * release: v0.68.1 [main] (#9867) * fix: update cosing settings for GoReleaser after bumping cosing to v3 (#9863) * chore(deps): bump the testcontainers group with 2 updates (#9506) * release: v0.68.0 [main] (#9549) * feat(aws): Add support for dualstack ECR endpoints (#9862) * fix(vex): use a separate `visited` set for each DFS path (#9760) * docs: catch some missed docs -> guide (#9850) * refactor(misconf): parse azure_policy_enabled to addonprofile.azurepolicy.enabled (#9851) * chore(cli): Remove Trivy Cloud (#9847) * fix(misconf): ensure value used as ignore marker is non-null and known (#9835) * fix(misconf): map healthcheck start period flag to --start-period instead of --startPeriod (#9837) * chore(deps): bump the docker group with 3 updates (#9776) * chore(deps): bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#9827) * chore(deps): bump the common group across 1 directory with 20 updates (#9840) * feat(image): add Sigstore bundle SBOM support (#9516) * chore(deps): bump the aws group with 7 updates (#9691) * test(k8s): update k8s integrtion test (#9725) * chore(deps): bump github.com/containerd/containerd from 1.7.28 to 1.7.29 (#9764) * feat(sbom): add support for SPDX attestations (#9829) * docs(misconf): Remove duplicate sections (#9819) * feat(misconf): Update Azure network schema for new checks (#9791) * feat(misconf): Update AppService schema (#9792) * fix(misconf): ensure boolean metadata values are correctly interpreted (#9770) * feat(misconf): support https_traffic_only_enabled in Az storage account (#9784) * docs: restructure docs for new hosting (#9799) * docs(server): fix info about scanning licenses on the client side. (#9805) * ci: remove unused preinstalled software/images for build tests to free up disk space. (#9814) * feat(report): add fingerprint generation for vulnerabilities (#9794) * chore: trigger the trivy-www workflow (#9737) * fix: update all documentation links (#9777) * feat(suse): Add new openSUSE, Micro and SLES releases end of life dates (#9788) * test(go): set `GOPATH` for tests (#9785) * feat(flag): add `--cacert` flag (#9781) * fix(misconf): handle unsupported experimental flags in Dockerfile (#9769) * test(go): refactor mod_test.go to use txtar format (#9775) * docs: Fix typos and linguistic errors in documentation / hacktoberfest (#9586) * chore(deps): bump github.com/opencontainers/selinux from 1.12.0 to 1.13.0 (#9778) * chore(deps): bump github.com/containerd/containerd/v2 from 2.1.4 to 2.1.5 (#9763) * fix(java): use `true` as default value for Repository Release|Snapshot Enabled in pom.xml and settings.xml files (#9751) * docs: add info that `SSL_CERT_FILE` works on `Unix systems other than macOS` only (#9772) * docs: change SecObserve URLs in documentatio (#9771) * feat(db): enable concurrent access to vulnerability database (#9750) * feat(misconf): add agentpools to azure container schema (#9714) * feat(report): switch ReportID from UUIDv4 to UUIDv7 (#9749) * feat(misconf): Update Azure Compute schema (#9675) * feat(misconf): Update azure storage schema (#9728) * feat(misconf): Update SecurityCenter schema (#9674) * feat(image): pass global context to docker/podman image save func (#9733) * chore(deps): bump the github-actions group with 4 updates (#9739) * fix(flag): remove viper.SetDefault to fix IsSet() for config-only flags (#9732) * feat(license): use separate SPDX ids to ignore SPDX expressions (#9087) * feat(dotnet): add dependency graph support for .deps.json files (#9726) * feat(misconf): Add support for configurable Rego error limit (#9657) * feat(misconf): Add RoleAssignments attribute (#9396) * feat(report): add image reference to report metadata (#9729) * fix(os): Add photon 5.0 in supported OS (#9724) * fix(license): handle SPDX WITH exceptions as single license in category detection (#9380) * refactor: add case-insensitive string set implementation (#9720) * feat: include registry and repository in artifact ID calculation (#9689) * feat(java): add support remote repositories from settings.xml files (#9708) * fix(sbom): don’t panic on SBOM format if scanned CycloneDX file has empty metadata (#9562) * docs: update vulnerability reporting guidelines in SECURITY.md (#9395) * docs: add info about `java-db` subdir (#9706) * fix(report): correct field order in SARIF license results (#9712) * test: improve golden file management in integration tests (#9699) * ci: get base_sha using base.ref (#9704) * refactor(misconf): mark AVDID fields as deprecated and use ID internally (#9576) * fix(nodejs): fix npmjs parser.pkgNameFromPath() panic issue (#9688) * fix: close all opened resources if an error occurs (#9665) * refactor(misconf): type-safe parser results in generic scanner (#9685) * feat(image): add RepoTags support for Docker archives (#9690) * chore(deps): bump github.com/quic-go/quic-go from 0.52.0 to 0.54.1 (#9694) * feat(misconf): Update Azure Container Schema (#9673) * ci: use merge commit for apidiff to avoid false positives (#9622) * feat(misconf): include map key in manifest snippet for diagnostics (#9681) * refactor(misconf): add ManifestFromYAML for unified manifest parsing (#9680) * test: update golden files for TestRepository* integration tests (#9684) * refactor(cli): Update the cloud config command (#9676) * fix(sbom): add `buildInfo` info as properties (#9683) * feat: add ReportID field to scan reports (#9670) * docs: add vulnerability database contribution guide (#9667) * feat(cli): Add trivy cloud suppport (#9637) * feat: add ArtifactID field to uniquely identify scan targets (#9663) * fix(nodejs): use the default ID format to match licenses in pnpm packages. (#9661) * feat(sbom): use SPDX license IDs list to validate SPDX IDs (#9569) * fix: use context for analyzers (#9538) * chore(deps): bump the docker group with 3 updates (#9545) * chore(deps): bump the aws group with 6 updates (#9547) * ci(helm): bump Trivy version to 0.67.2 for Trivy Helm Chart 0.19.1 (#9641) * test(helm): bump up Yamale dependency for Helm chart-testing-action (#9653) * fix: Trim the end-of-range suffix (#9618) * test(k8s): use a specific bundle for k8s misconfig scan (#9633) * fix: Use `fetch-level: 1` to check out trivy-repo in the release workflow (#9636) * refactor: move the aws config (#9617) * fix(license): don't normalize `unlicensed` licenses into `unlicense` (#9611) * fix: using SrcVersion instead of Version for echo detector (#9552) * feat(fs): change artifact type to repository when git info is detected (#9613) * fix: add `buildInfo` for `BlobInfo` in `rpc` package (#9608) * fix(vex): don't use reused BOM (#9604) * ci: use pull_request_target for apidiff workflow to support fork PRs (#9605) * fix: restore compatibility for google.protobuf.Value (#9559) * ci: add API diff workflow (#9600) * chore(deps): update to module-compatible docker-credential-gcr/v2 (#9591) * docs: improve documentation for scanning raw IaC configurations (#9571) * feat: allow ignoring findings by type in Rego (#9578) * docs: bump pygments from 2.18.0 to 2.19.2 (#9596) * refactor(misconf): add ID to scan.Rule (#9573) * fix(java): update order for resolving package fields from multiple demManagement (#9575) * chore(deps): bump the github-actions group across 1 directory with 9 updates (#9563) * chore(deps): bump the common group across 1 directory with 7 updates (#9590) * chore(deps): Switch to go-viper/mapstructure (#9579) * chore: add context to the cache interface (#9565) * ci(helm): bump Trivy version to 0.67.0 for Trivy Helm Chart 0.19.0 (#9554) * fix: validate backport branch name (#9548) ++++ trivy: - Update to version 0.68.1 (bsc#1251363, CVE-2025-47911, bsc#1251547, CVE-2025-58190, bsc#1253512, CVE-2025-47913, bsc#1253512, CVE-2025-47913, bsc#1253786, CVE-2025-58181, bsc#1253977, CVE-2025-47914): * release: v0.68.1 [main] (#9867) * fix: update cosing settings for GoReleaser after bumping cosing to v3 (#9863) * chore(deps): bump the testcontainers group with 2 updates (#9506) * release: v0.68.0 [main] (#9549) * feat(aws): Add support for dualstack ECR endpoints (#9862) * fix(vex): use a separate `visited` set for each DFS path (#9760) * docs: catch some missed docs -> guide (#9850) * refactor(misconf): parse azure_policy_enabled to addonprofile.azurepolicy.enabled (#9851) * chore(cli): Remove Trivy Cloud (#9847) * fix(misconf): ensure value used as ignore marker is non-null and known (#9835) * fix(misconf): map healthcheck start period flag to --start-period instead of --startPeriod (#9837) * chore(deps): bump the docker group with 3 updates (#9776) * chore(deps): bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#9827) * chore(deps): bump the common group across 1 directory with 20 updates (#9840) * feat(image): add Sigstore bundle SBOM support (#9516) * chore(deps): bump the aws group with 7 updates (#9691) * test(k8s): update k8s integrtion test (#9725) * chore(deps): bump github.com/containerd/containerd from 1.7.28 to 1.7.29 (#9764) * feat(sbom): add support for SPDX attestations (#9829) * docs(misconf): Remove duplicate sections (#9819) * feat(misconf): Update Azure network schema for new checks (#9791) * feat(misconf): Update AppService schema (#9792) * fix(misconf): ensure boolean metadata values are correctly interpreted (#9770) * feat(misconf): support https_traffic_only_enabled in Az storage account (#9784) * docs: restructure docs for new hosting (#9799) * docs(server): fix info about scanning licenses on the client side. (#9805) * ci: remove unused preinstalled software/images for build tests to free up disk space. (#9814) * feat(report): add fingerprint generation for vulnerabilities (#9794) * chore: trigger the trivy-www workflow (#9737) * fix: update all documentation links (#9777) * feat(suse): Add new openSUSE, Micro and SLES releases end of life dates (#9788) * test(go): set `GOPATH` for tests (#9785) * feat(flag): add `--cacert` flag (#9781) * fix(misconf): handle unsupported experimental flags in Dockerfile (#9769) * test(go): refactor mod_test.go to use txtar format (#9775) * docs: Fix typos and linguistic errors in documentation / hacktoberfest (#9586) * chore(deps): bump github.com/opencontainers/selinux from 1.12.0 to 1.13.0 (#9778) * chore(deps): bump github.com/containerd/containerd/v2 from 2.1.4 to 2.1.5 (#9763) * fix(java): use `true` as default value for Repository Release|Snapshot Enabled in pom.xml and settings.xml files (#9751) * docs: add info that `SSL_CERT_FILE` works on `Unix systems other than macOS` only (#9772) * docs: change SecObserve URLs in documentatio (#9771) * feat(db): enable concurrent access to vulnerability database (#9750) * feat(misconf): add agentpools to azure container schema (#9714) * feat(report): switch ReportID from UUIDv4 to UUIDv7 (#9749) * feat(misconf): Update Azure Compute schema (#9675) * feat(misconf): Update azure storage schema (#9728) * feat(misconf): Update SecurityCenter schema (#9674) * feat(image): pass global context to docker/podman image save func (#9733) * chore(deps): bump the github-actions group with 4 updates (#9739) * fix(flag): remove viper.SetDefault to fix IsSet() for config-only flags (#9732) * feat(license): use separate SPDX ids to ignore SPDX expressions (#9087) * feat(dotnet): add dependency graph support for .deps.json files (#9726) * feat(misconf): Add support for configurable Rego error limit (#9657) * feat(misconf): Add RoleAssignments attribute (#9396) * feat(report): add image reference to report metadata (#9729) * fix(os): Add photon 5.0 in supported OS (#9724) * fix(license): handle SPDX WITH exceptions as single license in category detection (#9380) * refactor: add case-insensitive string set implementation (#9720) * feat: include registry and repository in artifact ID calculation (#9689) * feat(java): add support remote repositories from settings.xml files (#9708) * fix(sbom): don’t panic on SBOM format if scanned CycloneDX file has empty metadata (#9562) * docs: update vulnerability reporting guidelines in SECURITY.md (#9395) * docs: add info about `java-db` subdir (#9706) * fix(report): correct field order in SARIF license results (#9712) * test: improve golden file management in integration tests (#9699) * ci: get base_sha using base.ref (#9704) * refactor(misconf): mark AVDID fields as deprecated and use ID internally (#9576) * fix(nodejs): fix npmjs parser.pkgNameFromPath() panic issue (#9688) * fix: close all opened resources if an error occurs (#9665) * refactor(misconf): type-safe parser results in generic scanner (#9685) * feat(image): add RepoTags support for Docker archives (#9690) * chore(deps): bump github.com/quic-go/quic-go from 0.52.0 to 0.54.1 (#9694) * feat(misconf): Update Azure Container Schema (#9673) * ci: use merge commit for apidiff to avoid false positives (#9622) * feat(misconf): include map key in manifest snippet for diagnostics (#9681) * refactor(misconf): add ManifestFromYAML for unified manifest parsing (#9680) * test: update golden files for TestRepository* integration tests (#9684) * refactor(cli): Update the cloud config command (#9676) * fix(sbom): add `buildInfo` info as properties (#9683) * feat: add ReportID field to scan reports (#9670) * docs: add vulnerability database contribution guide (#9667) * feat(cli): Add trivy cloud suppport (#9637) * feat: add ArtifactID field to uniquely identify scan targets (#9663) * fix(nodejs): use the default ID format to match licenses in pnpm packages. (#9661) * feat(sbom): use SPDX license IDs list to validate SPDX IDs (#9569) * fix: use context for analyzers (#9538) * chore(deps): bump the docker group with 3 updates (#9545) * chore(deps): bump the aws group with 6 updates (#9547) * ci(helm): bump Trivy version to 0.67.2 for Trivy Helm Chart 0.19.1 (#9641) * test(helm): bump up Yamale dependency for Helm chart-testing-action (#9653) * fix: Trim the end-of-range suffix (#9618) * test(k8s): use a specific bundle for k8s misconfig scan (#9633) * fix: Use `fetch-level: 1` to check out trivy-repo in the release workflow (#9636) * refactor: move the aws config (#9617) * fix(license): don't normalize `unlicensed` licenses into `unlicense` (#9611) * fix: using SrcVersion instead of Version for echo detector (#9552) * feat(fs): change artifact type to repository when git info is detected (#9613) * fix: add `buildInfo` for `BlobInfo` in `rpc` package (#9608) * fix(vex): don't use reused BOM (#9604) * ci: use pull_request_target for apidiff workflow to support fork PRs (#9605) * fix: restore compatibility for google.protobuf.Value (#9559) * ci: add API diff workflow (#9600) * chore(deps): update to module-compatible docker-credential-gcr/v2 (#9591) * docs: improve documentation for scanning raw IaC configurations (#9571) * feat: allow ignoring findings by type in Rego (#9578) * docs: bump pygments from 2.18.0 to 2.19.2 (#9596) * refactor(misconf): add ID to scan.Rule (#9573) * fix(java): update order for resolving package fields from multiple demManagement (#9575) * chore(deps): bump the github-actions group across 1 directory with 9 updates (#9563) * chore(deps): bump the common group across 1 directory with 7 updates (#9590) * chore(deps): Switch to go-viper/mapstructure (#9579) * chore: add context to the cache interface (#9565) * ci(helm): bump Trivy version to 0.67.0 for Trivy Helm Chart 0.19.0 (#9554) * fix: validate backport branch name (#9548) ------------------------------------------------------------------ ------------------ 2025-12-2 - Dec 2 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 143.0.7499.40 (boo#1254429): * CVE-2025-13630: Type Confusion in V8 * CVE-2025-13631: Inappropriate implementation in Google Updater * CVE-2025-13632: Inappropriate implementation in DevTools * CVE-2025-13633: Use after free in Digital Credentials * CVE-2025-13634: Inappropriate implementation in Downloads * CVE-2025-13720: Bad cast in Loader * CVE-2025-13721: Race in v8 * CVE-2025-13635: Inappropriate implementation in Downloads * CVE-2025-13636: Inappropriate implementation in Split View * CVE-2025-13637: Inappropriate implementation in Downloads * CVE-2025-13638: Use after free in Media Stream * CVE-2025-13639: Inappropriate implementation in WebRTC * CVE-2025-13640: Inappropriate implementation in Passwords - added patches: chromium-143-libpng-unbundle.patch (workaround broken libpng unbundle) chromium-143-cookie_string_view.patch (use string_view also for the const_iterator after type change) chromium-143-revert_rust_is_multiple_of.patch (revert added calls to is_multiple_of rejected as unstable feature) - modified patches: gcc-enable-lto.patch (updated context) chromium-127-constexpr.patch (file moved) chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch (add unsafe) ppc-fedora-fix-clang-selection.patch (updated context) ppc-fedora-0002-regenerate-xnn-buildgn.patch (reduced to stub, will need updating) - dropped patches: chromium-142-iwyu-field-form-data.patch (upstream) - bump buildrequires for rust-bindgen to 0.71 minimum as we need the unsafe_extern_blocks - updated ppc-fedora-0002-regenerate-xnn-buildgn.patch ++++ chromium: - Chromium 143.0.7499.40 (boo#1254429): * CVE-2025-13630: Type Confusion in V8 * CVE-2025-13631: Inappropriate implementation in Google Updater * CVE-2025-13632: Inappropriate implementation in DevTools * CVE-2025-13633: Use after free in Digital Credentials * CVE-2025-13634: Inappropriate implementation in Downloads * CVE-2025-13720: Bad cast in Loader * CVE-2025-13721: Race in v8 * CVE-2025-13635: Inappropriate implementation in Downloads * CVE-2025-13636: Inappropriate implementation in Split View * CVE-2025-13637: Inappropriate implementation in Downloads * CVE-2025-13638: Use after free in Media Stream * CVE-2025-13639: Inappropriate implementation in WebRTC * CVE-2025-13640: Inappropriate implementation in Passwords - added patches: chromium-143-libpng-unbundle.patch (workaround broken libpng unbundle) chromium-143-cookie_string_view.patch (use string_view also for the const_iterator after type change) chromium-143-revert_rust_is_multiple_of.patch (revert added calls to is_multiple_of rejected as unstable feature) - modified patches: gcc-enable-lto.patch (updated context) chromium-127-constexpr.patch (file moved) chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch (add unsafe) ppc-fedora-fix-clang-selection.patch (updated context) ppc-fedora-0002-regenerate-xnn-buildgn.patch (reduced to stub, will need updating) - dropped patches: chromium-142-iwyu-field-form-data.patch (upstream) - bump buildrequires for rust-bindgen to 0.71 minimum as we need the unsafe_extern_blocks - updated ppc-fedora-0002-regenerate-xnn-buildgn.patch ++++ chromium: - Chromium 143.0.7499.40 (boo#1254429): * CVE-2025-13630: Type Confusion in V8 * CVE-2025-13631: Inappropriate implementation in Google Updater * CVE-2025-13632: Inappropriate implementation in DevTools * CVE-2025-13633: Use after free in Digital Credentials * CVE-2025-13634: Inappropriate implementation in Downloads * CVE-2025-13720: Bad cast in Loader * CVE-2025-13721: Race in v8 * CVE-2025-13635: Inappropriate implementation in Downloads * CVE-2025-13636: Inappropriate implementation in Split View * CVE-2025-13637: Inappropriate implementation in Downloads * CVE-2025-13638: Use after free in Media Stream * CVE-2025-13639: Inappropriate implementation in WebRTC * CVE-2025-13640: Inappropriate implementation in Passwords - added patches: chromium-143-libpng-unbundle.patch (workaround broken libpng unbundle) chromium-143-cookie_string_view.patch (use string_view also for the const_iterator after type change) chromium-143-revert_rust_is_multiple_of.patch (revert added calls to is_multiple_of rejected as unstable feature) - modified patches: gcc-enable-lto.patch (updated context) chromium-127-constexpr.patch (file moved) chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch (add unsafe) ppc-fedora-fix-clang-selection.patch (updated context) ppc-fedora-0002-regenerate-xnn-buildgn.patch (reduced to stub, will need updating) - dropped patches: chromium-142-iwyu-field-form-data.patch (upstream) - bump buildrequires for rust-bindgen to 0.71 minimum as we need the unsafe_extern_blocks - updated ppc-fedora-0002-regenerate-xnn-buildgn.patch ++++ chromium: - Chromium 143.0.7499.40 (boo#1254429): * CVE-2025-13630: Type Confusion in V8 * CVE-2025-13631: Inappropriate implementation in Google Updater * CVE-2025-13632: Inappropriate implementation in DevTools * CVE-2025-13633: Use after free in Digital Credentials * CVE-2025-13634: Inappropriate implementation in Downloads * CVE-2025-13720: Bad cast in Loader * CVE-2025-13721: Race in v8 * CVE-2025-13635: Inappropriate implementation in Downloads * CVE-2025-13636: Inappropriate implementation in Split View * CVE-2025-13637: Inappropriate implementation in Downloads * CVE-2025-13638: Use after free in Media Stream * CVE-2025-13639: Inappropriate implementation in WebRTC * CVE-2025-13640: Inappropriate implementation in Passwords - added patches: chromium-143-libpng-unbundle.patch (workaround broken libpng unbundle) chromium-143-cookie_string_view.patch (use string_view also for the const_iterator after type change) chromium-143-revert_rust_is_multiple_of.patch (revert added calls to is_multiple_of rejected as unstable feature) - modified patches: gcc-enable-lto.patch (updated context) chromium-127-constexpr.patch (file moved) chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch (add unsafe) ppc-fedora-fix-clang-selection.patch (updated context) ppc-fedora-0002-regenerate-xnn-buildgn.patch (reduced to stub, will need updating) - dropped patches: chromium-142-iwyu-field-form-data.patch (upstream) - bump buildrequires for rust-bindgen to 0.71 minimum as we need the unsafe_extern_blocks - updated ppc-fedora-0002-regenerate-xnn-buildgn.patch ++++ chromium: - Chromium 143.0.7499.40 (boo#1254429): * CVE-2025-13630: Type Confusion in V8 * CVE-2025-13631: Inappropriate implementation in Google Updater * CVE-2025-13632: Inappropriate implementation in DevTools * CVE-2025-13633: Use after free in Digital Credentials * CVE-2025-13634: Inappropriate implementation in Downloads * CVE-2025-13720: Bad cast in Loader * CVE-2025-13721: Race in v8 * CVE-2025-13635: Inappropriate implementation in Downloads * CVE-2025-13636: Inappropriate implementation in Split View * CVE-2025-13637: Inappropriate implementation in Downloads * CVE-2025-13638: Use after free in Media Stream * CVE-2025-13639: Inappropriate implementation in WebRTC * CVE-2025-13640: Inappropriate implementation in Passwords - added patches: chromium-143-libpng-unbundle.patch (workaround broken libpng unbundle) chromium-143-cookie_string_view.patch (use string_view also for the const_iterator after type change) chromium-143-revert_rust_is_multiple_of.patch (revert added calls to is_multiple_of rejected as unstable feature) - modified patches: gcc-enable-lto.patch (updated context) chromium-127-constexpr.patch (file moved) chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch (add unsafe) ppc-fedora-fix-clang-selection.patch (updated context) ppc-fedora-0002-regenerate-xnn-buildgn.patch (reduced to stub, will need updating) - dropped patches: chromium-142-iwyu-field-form-data.patch (upstream) - bump buildrequires for rust-bindgen to 0.71 minimum as we need the unsafe_extern_blocks - updated ppc-fedora-0002-regenerate-xnn-buildgn.patch ++++ kernel-64kb: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-default: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-rt: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ dtb-aarch64: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ go1.24: - go1.24.11 (released 2025-12-02) includes two security fixes to the crypto/x509 package, as well as bug fixes to the runtime. Refs boo#1236217 go1.24 release tracking CVE-2025-61727 CVE-2025-61729 * go#76460 go#76445 boo#1254431 security: fix CVE-2025-61729 crypto/x509: excessive resource consumption in printing error string for host certificate validation * go#76463 go#76442 boo#1254430 security: fix CVE-2025-61727 crypto/x509: excluded subdomain constraint doesn't preclude wildcard SAN * go#76378 internal/cpu: incorrect CPU features bit parsing on loong64 cause illegal instruction core dumps on LA364 cores ++++ go1.24: - go1.24.11 (released 2025-12-02) includes two security fixes to the crypto/x509 package, as well as bug fixes to the runtime. Refs boo#1236217 go1.24 release tracking CVE-2025-61727 CVE-2025-61729 * go#76460 go#76445 boo#1254431 security: fix CVE-2025-61729 crypto/x509: excessive resource consumption in printing error string for host certificate validation * go#76463 go#76442 boo#1254430 security: fix CVE-2025-61727 crypto/x509: excluded subdomain constraint doesn't preclude wildcard SAN * go#76378 internal/cpu: incorrect CPU features bit parsing on loong64 cause illegal instruction core dumps on LA364 cores ++++ go1.25: - go1.25.5 (released 2025-12-02) includes two security fixes to the crypto/x509 package, as well as bug fixes to the mime and os packages. Refs boo#1244485 go1.25 release tracking CVE-2025-61729 CVE-2025-61727 * go#76461 go#76445 boo#1254431 security: fix CVE-2025-61729 crypto/x509: excessive resource consumption in printing error string for host certificate validation * go#76464 go#76442 boo#1254430 security: fix CVE-2025-61727 crypto/x509: excluded subdomain constraint doesn't preclude wildcard SAN * go#76245 mime: FormatMediaType and ParseMediaType not compatible across 1.24 to 1.25 * go#76360 os: on windows RemoveAll removing directories containing read-only files errors with unlinkat ... Access is denied, ReOpenFile error handling followup ++++ go1.25: - go1.25.5 (released 2025-12-02) includes two security fixes to the crypto/x509 package, as well as bug fixes to the mime and os packages. Refs boo#1244485 go1.25 release tracking CVE-2025-61729 CVE-2025-61727 * go#76461 go#76445 boo#1254431 security: fix CVE-2025-61729 crypto/x509: excessive resource consumption in printing error string for host certificate validation * go#76464 go#76442 boo#1254430 security: fix CVE-2025-61727 crypto/x509: excluded subdomain constraint doesn't preclude wildcard SAN * go#76245 mime: FormatMediaType and ParseMediaType not compatible across 1.24 to 1.25 * go#76360 os: on windows RemoveAll removing directories containing read-only files errors with unlinkat ... Access is denied, ReOpenFile error handling followup ++++ kernel-source: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-docs: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-kvmsmall: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-obs-build: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-obs-qa: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-syms: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ kernel-zfcpdump: - Input: cros_ec_keyb - fix an invalid memory access (stable-fixes). - Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes). - drm/xe: Prevent BIT() overflow when handling invalid prefetch region (git-fixes). - drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes). - drm/amd: Skip power ungate during suspend for VPE (stable-fixes). - drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes). - drm/amd/display: Fix pbn to kbps Conversion (stable-fixes). - drm/amd/display: Clear the CUR_ENABLE register on DCN20 on DPP5 (stable-fixes). - drm/amd/display: Increase DPCD read retries (stable-fixes). - drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes). - drm/amd/display: Prevent Gating DTBCLK before It Is Properly Latched (git-fixes). - drm/i915/dp_mst: Disable Panel Replay (git-fixes). - drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (stable-fixes). - drm/amd/display: Insert dccg log for easy debug (stable-fixes). - drm/amd/display: disable DPP RCG before DPP CLK enable (stable-fixes). - drm/amd/display: avoid reset DTBCLK at clock init (stable-fixes). - commit c2e115d ++++ suse-migration-services: - Consolidate project documentation Update project documentation including links to the official SUSE documentation as well as incorporate the QA and development documentation to allow users testing the public offering of the DMS - Fixed spec file regarding wicked2nm wicked2nm was set as a requirement to suse-migration-pre-checks beginning with SLE15 onward. wicked2nm is needed as pre-check tool on a SLE15 host as well as as migration tool inside of a SLE16 migration image/container. The package suse-migration-pre-checks is therefore installed into the live migration image/container and also set as a required package to the containment package that contains the live migration image blob. The problem is that wicked2nm only exists partially in SLE15, actually only on SLE15-SP7 for the x86_64 architecture. This is causing a problem for the SLE12-to-SLE15 migration images which builds migration live images for SLE15 for SP4(SAP target) and SP7(standard target) for x86_64 and aarch64. wicked2nm is a tool not really used or needed for this migration but the live migration image is based on SLE15 and of course other pre-checks are needed which means suse-migration-pre-checks has to be installed into those migration live image builds as well and that causes a problem when wicked2nm is a requirement not provided for this target. The solution proposed in this commit is to make wicked2nm a recommended package for suse-migration-pre-checks and to make sure that all SLE16 image builds explicitly installs wicked2nm which is already the case for all SLE16 based migration image descriptions in this git repo. - Bump version: 2.1.27 → 2.1.28 - Bump Migration changelog version: 2.1.28 - Fix update_version helper If minor or major version changes the respective patch and/or minor levels needs to be resetted ------------------------------------------------------------------ ------------------ 2025-12-1 - Dec 1 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-default: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-rt: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ dtb-aarch64: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ gimp: - Relax the gtk3_version requirement so that Leap 16.0 can build ++++ gimp: - Relax the gtk3_version requirement so that Leap 16.0 can build ++++ go1.24: - Packaging: Migrate from update-alternatives to libalternatives Refs boo#1245878 * This is an optional migration controlled via prjconf definition with_libalternatives * If with_libalternatives is not defined packaging continues to use update-alternatives ++++ go1.24: - Packaging: Migrate from update-alternatives to libalternatives Refs boo#1245878 * This is an optional migration controlled via prjconf definition with_libalternatives * If with_libalternatives is not defined packaging continues to use update-alternatives ++++ go1.25: - Packaging: Migrate from update-alternatives to libalternatives Refs boo#1245878 * This is an optional migration controlled via prjconf definition with_libalternatives * If with_libalternatives is not defined packaging continues to use update-alternatives ++++ go1.25: - Packaging: Migrate from update-alternatives to libalternatives Refs boo#1245878 * This is an optional migration controlled via prjconf definition with_libalternatives * If with_libalternatives is not defined packaging continues to use update-alternatives ++++ kernel-source: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-docs: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-kvmsmall: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-obs-build: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-obs-qa: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-syms: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ kernel-zfcpdump: - NFS4: Fix state renewals missing after boot (git-fixes). - commit a5ed3d2 - NFS: check if suid/sgid was cleared after a write as needed (git-fixes). - commit dd862cb - simplify nfs_atomic_open_v23() (git-fixes). - commit 4eb518c - exfat: fix improper check of dentry.stream.valid_size (git-fixes). - commit 7c2b843 - cramfs: Verify inode mode when loading from disk (git-fixes). - commit 7bbff69 - rpm/mkspec: Exclude azure from kernel-syms dependencies Similar to rt azure was initially a separate kernel variant, and not all KMPs are built for it. kernel-azure-devel should be included as explicit build depedency to get a KMP for this kernel flavor. - commit c174e9b - Refresh patches.suse/wifi-iwlwifi-Add-missing-firmware-info-for-bz-b0-mod.patch. Fix backport for 6.12. Upstream's IWL_BZ_UCODE_CORE_MAX has to be changed to 6.12's IWL_BZ_UCODE_API_MAX. Otherwise we get the fw strings like: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-" "IWL_BZ_UCODE_CORE_MAX" ".ucode"; instead of upstream's: "firmware" "=" "iwlwifi-bz-b0-fm-c0" "-c" "99" ".ucode"; - commit 0609d52 ++++ mcp-server-trento: - Release 1.0.0 [#]# What's Changed * Bump version 1.0.0 (#83) @nelsonkopliku * Revert release (#82) @nelsonkopliku * bump version 1.0.0 (#80) @nelsonkopliku * Revert release (#78) @nelsonkopliku * bump version 1.0.0 (#77) @nelsonkopliku * fix get_version_from_git.sh (#76) @nelsonkopliku * Revert release (#75) @nelsonkopliku * Release version 1.0.0 (#74) @nelsonkopliku * [TRNT-3946] Improve user documentation (#62) @antgamdia * [TRNT-3946] Add missing INSECURE_SKIP_TLS_VERIFY to default config (#72) @antgamdia * Aligns golang version (#53) @gagandeepb * [TRNT-3854] Add OBS workflows (#41) @antgamdia * [TRNT-3845] Add asciidoc-linter and fix issues (#26) @antgamdia * [TRNT-3850] Remove unused OAuth logic (#21) @antgamdia * Fix for autobuild (#17) @EMaksy * [TRNT-3844] Add initial MCP server code (#7) @antgamdia [#]## Features * Sync both stable and rolling obs projects (#79) @nelsonkopliku * [TRNT-3946] Replace header name "Authorization" (#69) @antgamdia * [TRTN-3845] Improve handling of paths (#67) @antgamdia * [TRNT-3845] Use autodiscovery of Trento API endpoints (#59) @antgamdia * [TRNT-3854] Rename binaries (#66) @antgamdia * [TRNT-3854] Rename rpm binary to `mcp-server-trento` (#61) @antgamdia * [TRNT-3845] Delete hardcoded API docs (#24) @antgamdia * [TRNT-3854] Add opional health check server (#57) @antgamdia * [TRNT-3854] Delete local helm chart (#51) @antgamdia * [TRNT-3854] Improve config file and include it in packaging (#52) @antgamdia * [TRNT-3845] Support multiple API docs (#54) @antgamdia * [TRNT-3854] Rename pkg in OBS (#45) @antgamdia * [TRNT-3854] Allow passing configuration in multiple ways (#43) @antgamdia * [TRNT-3854] Download OAS file from HTTP (#46) @antgamdia * [TRNT-3853] Redirect library log traces to our logger (#29) @antgamdia * [TRNT-3854] Add initial release workflows (#42) @antgamdia * [TRNT-3854] Prepare CI for more steps (#38) @antgamdia * [TRNT-3853] Use asdf versions in the scripts and CI (#25) @antgamdia * [TRNT-3854] Add packaging folder (#40) @antgamdia * [TRNT-3854] Update dockerfile and makefile (#37) @antgamdia * [TRNT-3850] Use modelcontextprotocol/go-sdk (#16) @antgamdia * [TRNT-3853] Use API-key based authentication (#14) @antgamdia * [TRNT-3850] Add initial unit tests (#10) @antgamdia * [TRNT-3850] Improve existing mcp server logic (#9) @antgamdia * [TRNT-3850] Use the evcc-io/openapi-mcp fork instead (#8) @antgamdia * [TRNT-3844] Add initial MCP server code (#1) @antgamdia [#]## Bug Fixes * [TRNT-4097] Fix timeouts (#81) @antgamdia * [TRNT-4079] Use custom http client for tool execution (#73) @antgamdia * [TRNT-3853] Use per-mcp-session API tokens (#58) @antgamdia * [TRNT-3853] Increase timeouts (#30) @antgamdia * [TRNT-3853] Fix container push (#34) @antgamdia [#]## Dependencies
21 changes * Bump golangci/golangci-lint-action from 8 to 9 (#70) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 5 to 6 (#71) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 1.0.0 to 1.1.0 (#68) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 5 to 6 (#65) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/upload-artifact from 4 to 5 (#64) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (#63) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 6 to 7 (#60) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.7.0 to 1.0.0 (#56) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.6.0 to 0.7.0 (#50) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/evcc-io/openapi-mcp from 0.5.1 to 0.6.0 (#48) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#44) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.4.0 to 0.5.0 (#36) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/evcc-io/openapi-mcp from 0.5.0 to 0.5.1 (#33) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.3.1 to 0.4.0 (#32) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-go from 5 to 6 (#31) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#20) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/getkin/kin-openapi from 0.132.0 to 0.133.0 (#19) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/mark3labs/mcp-go from 0.37.0 to 0.38.0 (#18) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#15) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 4 to 5 (#13) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/mark3labs/mcp-go from 0.36.0 to 0.37.0 (#11) @[dependabot[bot]](https://github.com/apps/dependabot)
* *Full Changelog**: https://github.com/trento-project/mcp-server/compare/...1.0.0 ++++ openQA: - Update to version 5.1764349525.ffb59486: * Also use TIMEOUT_SCALE for priority malus calculation * docs: Fix wrapping and typo * Document multi machine ovs flow setup and IPv6 usage * Avoid computing time constraint for scheduled product cleanup in Perl * rpm: Move `…-enqueue-needle-ref-cleanup` to other `…-enqueue-…` scripts * Add task to limit scheduled products similar to audit events * Extract generic parts from audit event cleanup task into generic task * parser: ktap: Show full output by default if no line was parsed * Ignore npm scripts also via `.npmrc` to make bare npm calls more secure * Avoid repeating `MAIN_SETTINGS` in various places * Fix possibly excessive memory use when computer test result overview * Fix typo in `_prepare_complex_query_search_args` * Fix indentation in `overview.html.ep` * Prevent logging AMQP credentials in debug output * Make restart_openqa_job emit proper event payload * Enable gru tasks to emit AMQP messages * Remove explicit loading AMQP plugin in Gru plugin * Emit restart events when job restarted automatically * Add debug message about priority malus * Fix ordering of job groups after 2ad929ceca43d ++++ openQA: - Update to version 5.1764349525.ffb59486: * Also use TIMEOUT_SCALE for priority malus calculation * docs: Fix wrapping and typo * Document multi machine ovs flow setup and IPv6 usage * Avoid computing time constraint for scheduled product cleanup in Perl * rpm: Move `…-enqueue-needle-ref-cleanup` to other `…-enqueue-…` scripts * Add task to limit scheduled products similar to audit events * Extract generic parts from audit event cleanup task into generic task * parser: ktap: Show full output by default if no line was parsed * Ignore npm scripts also via `.npmrc` to make bare npm calls more secure * Avoid repeating `MAIN_SETTINGS` in various places * Fix possibly excessive memory use when computer test result overview * Fix typo in `_prepare_complex_query_search_args` * Fix indentation in `overview.html.ep` * Prevent logging AMQP credentials in debug output * Make restart_openqa_job emit proper event payload * Enable gru tasks to emit AMQP messages * Remove explicit loading AMQP plugin in Gru plugin * Emit restart events when job restarted automatically * Add debug message about priority malus * Fix ordering of job groups after 2ad929ceca43d ++++ openQA: - Update to version 5.1764349525.ffb59486: * Also use TIMEOUT_SCALE for priority malus calculation * docs: Fix wrapping and typo * Document multi machine ovs flow setup and IPv6 usage * Avoid computing time constraint for scheduled product cleanup in Perl * rpm: Move `…-enqueue-needle-ref-cleanup` to other `…-enqueue-…` scripts * Add task to limit scheduled products similar to audit events * Extract generic parts from audit event cleanup task into generic task * parser: ktap: Show full output by default if no line was parsed * Ignore npm scripts also via `.npmrc` to make bare npm calls more secure * Avoid repeating `MAIN_SETTINGS` in various places * Fix possibly excessive memory use when computer test result overview * Fix typo in `_prepare_complex_query_search_args` * Fix indentation in `overview.html.ep` * Prevent logging AMQP credentials in debug output * Make restart_openqa_job emit proper event payload * Enable gru tasks to emit AMQP messages * Remove explicit loading AMQP plugin in Gru plugin * Emit restart events when job restarted automatically * Add debug message about priority malus * Fix ordering of job groups after 2ad929ceca43d ++++ openQA: - Update to version 5.1764349525.ffb59486: * Also use TIMEOUT_SCALE for priority malus calculation * docs: Fix wrapping and typo * Document multi machine ovs flow setup and IPv6 usage * Avoid computing time constraint for scheduled product cleanup in Perl * rpm: Move `…-enqueue-needle-ref-cleanup` to other `…-enqueue-…` scripts * Add task to limit scheduled products similar to audit events * Extract generic parts from audit event cleanup task into generic task * parser: ktap: Show full output by default if no line was parsed * Ignore npm scripts also via `.npmrc` to make bare npm calls more secure * Avoid repeating `MAIN_SETTINGS` in various places * Fix possibly excessive memory use when computer test result overview * Fix typo in `_prepare_complex_query_search_args` * Fix indentation in `overview.html.ep` * Prevent logging AMQP credentials in debug output * Make restart_openqa_job emit proper event payload * Enable gru tasks to emit AMQP messages * Remove explicit loading AMQP plugin in Gru plugin * Emit restart events when job restarted automatically * Add debug message about priority malus * Fix ordering of job groups after 2ad929ceca43d ++++ virtme: - Update to 1.39: * The most noticeable change in this release is the new Model Context Protocol (MCP) server. This feature lets you connect with AI assistants such as Claude, Cursor, etc., and use natural human language to automate kernel development tasks. In this way, AI agents can automatically configure kernels, apply patches from lore.kernel.org, and run commands within recompiled kernels. You can even have the AI agent perform bug bisection for you and run specific commands/scripts inside each recompiled version to determine whether the kernel is good or bad. * An additional feature is vCPU pinning (using the --pin CPU_LIST option), which enables binding virtual CPUs to particular physical host CPUs. This ensures more consistent performance testing within the vng guest environment. * The release also adds support for memoryless NUMA nodes, enablingusers to specify size=0 with the --numa argument to create NUMA nodes without memory. This capability can be useful for simulating heterogeneous architectures, where devices like GPUs are represented as memoryless NUMA nodes to model their CPU locality relationships. * Last, but not least, there's a new --shell BINARY option which lets users choose a different shell to use within the vng session, rather than using their system's default shell and a new --empty-password option that creates empty passwords in the vng guest, instead of blocking login for other users, enabling easier debugging and SSH access during testing. * Updated Python versions in CI (dropped EOL 3.8 and 3.9) * Various bug fixes in virtme-init * Enhanced documentation and README updates * Improved error handling and validation ++++ virtme: - Update to 1.39: * The most noticeable change in this release is the new Model Context Protocol (MCP) server. This feature lets you connect with AI assistants such as Claude, Cursor, etc., and use natural human language to automate kernel development tasks. In this way, AI agents can automatically configure kernels, apply patches from lore.kernel.org, and run commands within recompiled kernels. You can even have the AI agent perform bug bisection for you and run specific commands/scripts inside each recompiled version to determine whether the kernel is good or bad. * An additional feature is vCPU pinning (using the --pin CPU_LIST option), which enables binding virtual CPUs to particular physical host CPUs. This ensures more consistent performance testing within the vng guest environment. * The release also adds support for memoryless NUMA nodes, enablingusers to specify size=0 with the --numa argument to create NUMA nodes without memory. This capability can be useful for simulating heterogeneous architectures, where devices like GPUs are represented as memoryless NUMA nodes to model their CPU locality relationships. * Last, but not least, there's a new --shell BINARY option which lets users choose a different shell to use within the vng session, rather than using their system's default shell and a new --empty-password option that creates empty passwords in the vng guest, instead of blocking login for other users, enabling easier debugging and SSH access during testing. * Updated Python versions in CI (dropped EOL 3.8 and 3.9) * Various bug fixes in virtme-init * Enhanced documentation and README updates * Improved error handling and validation ------------------------------------------------------------------ ------------------ 2025-11-29 - Nov 29 2025 ------------------- ------------------------------------------------------------------ ++++ act: - Update vendored golang.org/x/crypto to v0.43.0 to fix CVE-2025-47913 (bsc#1253608, GO-2025-4116): SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process. ++++ kernel-64kb: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-default: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-rt: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ dtb-aarch64: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-source: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-docs: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-kvmsmall: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-obs-build: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-obs-qa: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-syms: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ++++ kernel-zfcpdump: - spi: nxp-fspi: Propagate fwnode in ACPI case as well (git-fixes). - spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes). - spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes). - regulator: rtq2208: Correct LDO2 logic judgment bits (git-fixes). - regulator: rtq2208: Correct buck group2 phase mapping logic (git-fixes). - firmware: stratix10-svc: fix bug in saving controller data (git-fixes). - iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes). - iio: humditiy: hdc3020: fix units for thresholds and hysteresis (git-fixes). - iio: humditiy: hdc3020: fix units for temperature and humidity measurement (git-fixes). - iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes). - iio: accel: fix ADXL355 startup race condition (git-fixes). - iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes). - iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes). - iio: adc: stm32-dfsdm: fix st,adc-alt-channel property handling (git-fixes). - iio: adc: rtq6056: Correct the sign bit index (git-fixes). - most: usb: fix double free on late probe failure (git-fixes). - slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes). - serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes). - usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes). - USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes). - usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes). - usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes). - usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes). - usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes). - drivers/usb/dwc3: fix PCI parent check (git-fixes). - usb: storage: Fix memory leak in USB bulk transport (git-fixes). - xhci: fix stale flag preventig URBs after link state error is cleared (git-fixes). - usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes). - usb: renesas_usbhs: Fix synchronous external abort on unbind (git-fixes). - mailbox: mtk-cmdq: Refine DMA address handling for the command buffer (git-fixes). - mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes). - mmc: sdhci-of-dwcmshc: Promote the th1520 reset handling to ip level (git-fixes). - drm/xe: Fix conversion from clock ticks to milliseconds (git-fixes). - drm: sti: fix device leaks at component probe (git-fixes). - drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes). - Revert "drm/amd/display: Move setup_stream_attribute" (stable-fixes). - commit ded5020 - net: dlink: handle copy_thresh allocation failure (CVE-2025-40053 bsc#1252808) - commit 243bc04 ------------------------------------------------------------------ ------------------ 2025-11-28 - Nov 28 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-default: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-rt: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ dracut: - Update to version 059+suse.703.g9c695861: * fix(kernel-modules-extra): remove stray \ before / (bsc#1253029) ++++ dtb-aarch64: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ emacs: - Avoid direct dependencies to X11 libraries for wayland port ++++ gitea-tea: - Do not make config file group-readable. * remove-config-file-group-readwrite-permission-856.patch ++++ haproxy: - VUL-0: CVE-2025-11230: haproxy: issue in the mjson JSON decoder leads to excessive resource consumption when processing numbers with large exponents (bsc#1250983) Add upstream patch: 0001-BUG-CRITICAL-mjson-fix-possible-DoS-when-parsing-num.patch ++++ helmfile: - Update to version 1.2.2: * Fix AWS SDK debug logging by making it configurable (issue [#2270]) by @aditmeno in #2290 * test: add integration test for issue #2291 (CRD preservation with strategicMergePatches) by @aditmeno in #2292 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.1 to 1.32.2 by @dependabot[bot] in #2300 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.92.0 to 1.92.1 by @dependabot[bot] in #2299 * fix: resolve issues #2295, #2296, and #2297 by @aditmeno in #2298 * build(deps): update Helm v4 to 4.0.1 and helm-secrets to 4.7.4 by @aditmeno in #2304 * feat: add print-env command by @dschmidt in #2279 ++++ kernel-source: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-docs: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-kvmsmall: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-obs-build: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-obs-qa: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-syms: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ kernel-zfcpdump: - pid: Add a judgment for ns null in pid_nr_ns (CVE-2025-40178 bsc#1253463) - commit 63794eb - wifi: mt76: mt7925: refine the txpower initialization flow (bsc#1254315). - wifi: mt76: mt7925: add pci restore for hibernate (bsc#1254315). - wifi: mt76: mt7925: extend MCU support for testmode (bsc#1254315). - wifi: mt76: mt7925: Fix logical vs bitwise typo (bsc#1254315). - wifi: mt76: mt7925: fix missing hdr_trans_tlv command for broadcast wtbl (bsc#1254315). - wifi: mt76: mt7925: update the channel usage when the regd domain changed (bsc#1254315). - wifi: mt76: mt7925: add EHT control support based on the CLC data (bsc#1254315). - commit b3a65bc - wifi: mt76: mt7925: Simplify HIF suspend handling to avoid suspend fail (bsc#1254315). - wifi: mt76: mt7925: Remove unnecessary if-check (bsc#1254315). - wifi: mt76: mt7925e: fix too long of wifi resume time (bsc#1254315). - wifi: mt76: mt7925: add handler to hif suspend/resume event (bsc#1254315). - wifi: mt76: mt7925: fix CLC command timeout when suspend/resume (bsc#1254315). - wifi: mt76: mt7925: fix the unfinished command of regd_notifier before suspend (bsc#1254315). - commit 7d10c9c - wifi: mt76: do not add wcid entries to sta poll list during MCU reset (bsc#1254315). - wifi: mt76: mt7925: replace zero-length array with flexible-array member (bsc#1254315). - wifi: mt76: mt7925: config the dwell time by firmware (bsc#1254315). - wifi: mt76: introduce mt792x_config_mac_addr_list routine (bsc#1254315). - commit 0881cd3 - can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data (git-fixes). - can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header (git-fixes). - can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes). - can: sja1000: fix max irq loop handling (git-fixes). - can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes). - net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes). - atm/fore200e: Fix possible data race in fore200e_open() (git-fixes). - Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes). - Bluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref (git-fixes). - Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes). - Bluetooth: hci_core: Fix triggering cmd_timer for HCI_OP_NOP (git-fixes). - net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes). - platform/x86: intel: punit_ipc: fix memory corruption (git-fixes). - atm: idt77252: Add missing `dma_map_error()` (stable-fixes). - commit d903713 - powercap: intel_rapl: Add support for Panther Lake platform (jsc#PED-13949). - commit ec5339a ++++ libpng16: - security update - added patches CVE-2025-64505 [bsc#1254157], heap buffer over-read in `png_do_quantize` via malformed palette index * libpng16-CVE-2025-64505.patch CVE-2025-64506 [bsc#1254158], heap buffer over-read in `png_write_image_8bit` with 8-bit input and `convert_to_8bit` enabled * libpng16-CVE-2025-64506.patch CVE-2025-64720 [bsc#1254159], buffer overflow in `png_image_read_composite` via incorrect palette premultiplication * libpng16-CVE-2025-64720.patch CVE-2025-65018 [bsc#1254160], heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read` * libpng16-CVE-2025-65018.patch ++++ libpng16: - security update - added patches CVE-2025-64505 [bsc#1254157], heap buffer over-read in `png_do_quantize` via malformed palette index * libpng16-CVE-2025-64505.patch CVE-2025-64506 [bsc#1254158], heap buffer over-read in `png_write_image_8bit` with 8-bit input and `convert_to_8bit` enabled * libpng16-CVE-2025-64506.patch CVE-2025-64720 [bsc#1254159], buffer overflow in `png_image_read_composite` via incorrect palette premultiplication * libpng16-CVE-2025-64720.patch CVE-2025-65018 [bsc#1254160], heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read` * libpng16-CVE-2025-65018.patch ++++ mcp-server-trento: - Release 1.0.0 [#]# What's Changed * bump version 1.0.0 (#80) @nelsonkopliku [#]## Features * Sync both stable and rolling obs projects (#79) @nelsonkopliku * *Full Changelog**: https://github.com/trento-project/mcp-server/compare/0.1.0...1.0.0 - Release 0.1.0 [#]# What's Changed * Revert release (#78) @nelsonkopliku * bump version 1.0.0 (#77) @nelsonkopliku * fix get_version_from_git.sh (#76) @nelsonkopliku * Revert release (#75) @nelsonkopliku * Release version 1.0.0 (#74) @nelsonkopliku * [TRNT-3946] Improve user documentation (#62) @antgamdia * [TRNT-3946] Add missing INSECURE_SKIP_TLS_VERIFY to default config (#72) @antgamdia * Aligns golang version (#53) @gagandeepb * [TRNT-3854] Add OBS workflows (#41) @antgamdia * [TRNT-3845] Add asciidoc-linter and fix issues (#26) @antgamdia * [TRNT-3850] Remove unused OAuth logic (#21) @antgamdia * Fix for autobuild (#17) @EMaksy * [TRNT-3844] Add initial MCP server code (#7) @antgamdia [#]## Features * [TRNT-3946] Replace header name "Authorization" (#69) @antgamdia * [TRTN-3845] Improve handling of paths (#67) @antgamdia * [TRNT-3845] Use autodiscovery of Trento API endpoints (#59) @antgamdia * [TRNT-3854] Rename binaries (#66) @antgamdia * [TRNT-3854] Rename rpm binary to `mcp-server-trento` (#61) @antgamdia * [TRNT-3845] Delete hardcoded API docs (#24) @antgamdia * [TRNT-3854] Add opional health check server (#57) @antgamdia * [TRNT-3854] Delete local helm chart (#51) @antgamdia * [TRNT-3854] Improve config file and include it in packaging (#52) @antgamdia * [TRNT-3845] Support multiple API docs (#54) @antgamdia * [TRNT-3854] Rename pkg in OBS (#45) @antgamdia * [TRNT-3854] Allow passing configuration in multiple ways (#43) @antgamdia * [TRNT-3854] Download OAS file from HTTP (#46) @antgamdia * [TRNT-3853] Redirect library log traces to our logger (#29) @antgamdia * [TRNT-3854] Add initial release workflows (#42) @antgamdia * [TRNT-3854] Prepare CI for more steps (#38) @antgamdia * [TRNT-3853] Use asdf versions in the scripts and CI (#25) @antgamdia * [TRNT-3854] Add packaging folder (#40) @antgamdia * [TRNT-3854] Update dockerfile and makefile (#37) @antgamdia * [TRNT-3850] Use modelcontextprotocol/go-sdk (#16) @antgamdia * [TRNT-3853] Use API-key based authentication (#14) @antgamdia * [TRNT-3850] Add initial unit tests (#10) @antgamdia * [TRNT-3850] Improve existing mcp server logic (#9) @antgamdia * [TRNT-3850] Use the evcc-io/openapi-mcp fork instead (#8) @antgamdia * [TRNT-3844] Add initial MCP server code (#1) @antgamdia [#]## Bug Fixes * [TRNT-4079] Use custom http client for tool execution (#73) @antgamdia * [TRNT-3853] Use per-mcp-session API tokens (#58) @antgamdia * [TRNT-3853] Increase timeouts (#30) @antgamdia * [TRNT-3853] Fix container push (#34) @antgamdia [#]## Dependencies
21 changes * Bump golangci/golangci-lint-action from 8 to 9 (#70) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 5 to 6 (#71) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 1.0.0 to 1.1.0 (#68) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 5 to 6 (#65) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/upload-artifact from 4 to 5 (#64) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (#63) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 6 to 7 (#60) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.7.0 to 1.0.0 (#56) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.6.0 to 0.7.0 (#50) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/evcc-io/openapi-mcp from 0.5.1 to 0.6.0 (#48) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#44) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.4.0 to 0.5.0 (#36) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/evcc-io/openapi-mcp from 0.5.0 to 0.5.1 (#33) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/modelcontextprotocol/go-sdk from 0.3.1 to 0.4.0 (#32) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-go from 5 to 6 (#31) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#20) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/getkin/kin-openapi from 0.132.0 to 0.133.0 (#19) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/mark3labs/mcp-go from 0.37.0 to 0.38.0 (#18) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#15) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 4 to 5 (#13) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/mark3labs/mcp-go from 0.36.0 to 0.37.0 (#11) @[dependabot[bot]](https://github.com/apps/dependabot)
* *Full Changelog**: https://github.com/trento-project/mcp-server/compare/...0.1.0 - Release 1.0.0 [#]# What's Changed * bump version 1.0.0 (#77) @nelsonkopliku * fix get_version_from_git.sh (#76) @nelsonkopliku * *Full Changelog**: https://github.com/trento-project/mcp-server/compare/0.1.0...1.0.0 ++++ openQA: - Update to version 5.1764349525.ffb59486: * Also use TIMEOUT_SCALE for priority malus calculation * docs: Fix wrapping and typo * Document multi machine ovs flow setup and IPv6 usage * Avoid computing time constraint for scheduled product cleanup in Perl * rpm: Move `…-enqueue-needle-ref-cleanup` to other `…-enqueue-…` scripts * Add task to limit scheduled products similar to audit events * Extract generic parts from audit event cleanup task into generic task * parser: ktap: Show full output by default if no line was parsed * Ignore npm scripts also via `.npmrc` to make bare npm calls more secure * Avoid repeating `MAIN_SETTINGS` in various places * Fix possibly excessive memory use when computer test result overview * Fix typo in `_prepare_complex_query_search_args` * Fix indentation in `overview.html.ep` * Prevent logging AMQP credentials in debug output * Make restart_openqa_job emit proper event payload * Enable gru tasks to emit AMQP messages * Remove explicit loading AMQP plugin in Gru plugin * Emit restart events when job restarted automatically * Add debug message about priority malus * Fix ordering of job groups after 2ad929ceca43d ++++ os-autoinst: - Update to version 5.1764330105.c5cfd48: * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1764330105.c5cfd48: * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1764330105.c5cfd48: * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1764330105.c5cfd48: * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ os-autoinst: - Update to version 5.1764330105.c5cfd48: * Add port forwarding example for NICTYPE_USER_OPTIONS * Fix regression from abcaa66b by disabling virtio-keyboard by default * Add IPv6 support for multi machine tests * distribution: Add "disable_key_repeat" * Use 'virtio-keyboard' by default to allow fixing key repetition errors ++++ trento-checks: - Release 1.2.0 - Release 1.2.0 [#] Changelog [#]# [1.2.0](https://github.com/trento-project/checks/tree/1.2.0) (2025-11-28) [Full Changelog](https://github.com/trento-project/checks/compare/1.1.0...1.2.0) * *Implemented enhancements:** - Fix token authentication enabled env variable name [\#52](https://github.com/trento-project/checks/pull/52) ([nelsonkopliku](https://github.com/nelsonkopliku)) * *Merged pull requests:** - Revert "Improve checks development experience \(\#35\)" [\#51](https://github.com/trento-project/checks/pull/51) ([balanza](https://github.com/balanza)) - Second set of checks from backlog of classic perf-opt HANA [\#50](https://github.com/trento-project/checks/pull/50) ([ksanjeet](https://github.com/ksanjeet)) - Fix adoc link [\#45](https://github.com/trento-project/checks/pull/45) ([EMaksy](https://github.com/EMaksy)) - Convert Markdwon to Adoc [\#44](https://github.com/trento-project/checks/pull/44) ([EMaksy](https://github.com/EMaksy)) ------------------------------------------------------------------ ------------------ 2025-11-27 - Nov 27 2025 ------------------- ------------------------------------------------------------------ ++++ cheat: - Security: * CVE-2025-47913: Fix client process termination (bsc#1253593) * CVE-2025-58181: Fix potential unbounded memory consumption (bsc#1253922) * CVE-2025-47914: Fix panic due to an out of bounds read (bsc#1254051) * Replace golang.org/x/crypto=golang.org/x/crypto@v0.45.0 * Replace golang.org/x/net=golang.org/x/net@v0.47.0 * Replace golang.org/x/sys=golang.org/x/sys@v0.38.0 ++++ kernel-64kb: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-default: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-rt: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ dtb-aarch64: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-source: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-docs: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-kvmsmall: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-obs-build: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-obs-qa: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-syms: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ kernel-zfcpdump: - remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (CVE-2025-40033 bsc#1252824) - commit 1f94f0d - dm: fix NULL pointer dereference in __dm_suspend() (CVE-2025-40134 bsc#1253386) - commit 58ac2ab - dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386) - commit b6bae55 - KVM: arm64: Prevent access to vCPU events before init (CVE-2025-40102 bsc#1252919) - commit 4b4bc9f - perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (CVE-2025-40081 bsc#1252776) - commit 81815d3 - Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2. - commit f2f396d - scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119). - scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119). - scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119). - scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119). - scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119). - scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119). - scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119). - scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119). - scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119). - scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119). - commit 35bb962 - dm error: mark as DM_TARGET_PASSES_INTEGRITY (git-fixes). - commit 2430a06 - nvmet-auth: update sc_c in target host hash calculation (git-fixes). - nvmet-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme: Use non zero KATO for persistent discovery connections (git-fixes). - commit 6cc3f67 - dm-raid: don't set io_min and io_opt for raid1 (git-fixes). - commit 0efc26c - dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes). - commit 403c124 - s390/mm: Fix __ptep_rdp() inline assembly (bsc#1253643). - commit 0584e20 - KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352). - KVM: s390: improve interrupt cpu for wakeup (bsc#1235463). - commit 772f945 - ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). - commit cab7bbf - sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1248792). - commit 64c9f81 - sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1248792). - commit 315148b - Delete patches.suse/sched-Skip-useless-sched_balance_running-acquisition-if-load-balance-is-not-due.patch. Will be replaced by final upstream version. - commit 0df2b8e ++++ supportutils-plugin-trento: - Release 3.0.0 [#]# What's Changed * Release version 3.0.0 (#13) @nelsonkopliku * Setup CI and develoment tools (#11) @balanza * Scaffold CI (#12) @balanza * *Full Changelog**: https://github.com/trento-project/support/compare/2.5.2...3.0.0 ++++ suse-migration-services: - Fix mount_system Fixes: 15549f619 - Fix order of reboot service Make sure the reboot service is started after the following potentialy other services: wicked-networkmanager, regenerate-initrd, pam-config and ha grub-setup. - Improve dracut logging If no action is needed, a message should be part of the log In addition fix the misleading systemd unit title for this service. The regenerate initrd service runs to create a generic (no hostonly) initrd due to a configuration request. This has nothing to do with multipath in the first place. ++++ suse-module-tools: - Update to version 16.0.63: * 80-hotplug-cpu-mem.rules: remount tmpfs on "online" uevents (bsc#1254264) * udev: use systemd service to remount tmpfs (bsc#1253679) ++++ trento-agent: - Release 3.0.0 [#]# What's Changed * Release version 3.0.0 (#514) @nelsonkopliku * specify C locale for command execution (#511) @gereonvey * Bump trento-contracts dependency (#494) @gagandeepb * Update mockery to 2.53.2 (#485) @balanza * Bump go 1.25 (#480) @balanza * Bump golangci-lint (#481) @balanza * Bump workbench version (#474) @balanza * Add link to contribution (#477) @EMaksy * Improve agent docs for auto build (#475) @EMaksy * Bump workbench version (#467) @balanza * Update table of contents in the Readme (#465) @EMaksy * Discovery cluster offline host (#464) @balanza * Convert Markdown documentation to Adoc (#459) @EMaksy * Update mockery usage (#453) @nelsonkopliku * Replace logrus logger with built-in log/slogs (#449) @balanza * Implement FS usage gatherer (#440) @janvhs * Add Architecture Discovery (#448) @janvhs * Update workbench dependency (#450) @arbulu89 * Remove support for the 64 Bit ARM (aarch64/arm64) (#445) @janvhs [#]## Features * Add managed field to crm_mon group (#457) @arbulu89 * Systemd units discovery (#455) @nelsonkopliku [#]## Bug Fixes * Handle zypper versioncmp exit codes 11 and 12 (#495) @arbulu89 * Fix link and references for adoc documents (#462) @EMaksy * Fix missing log references (#452) @nelsonkopliku * Fix log-level usage (#443) @nelsonkopliku [#]## Maintenance * Sync both stable and rolling in obs (#466) @vicenteqa * Use adoc in spec file docs (#468) @arbulu89 * Use latest version of endorama/asdf-parse-tool-versions to avoid using deprecated set-output command in gh actions. (#458) @vicenteqa [#]## Dependencies
37 changes * Bump actions/checkout from 5 to 6 (#513) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump endorama/asdf-parse-tool-versions from 1.4.0 to 1.4.1 (#512) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/mod from 0.29.0 to 0.30.0 (#509) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/sync from 0.17.0 to 0.18.0 (#507) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golangci/golangci-lint-action from 8 to 9 (#508) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump google.golang.org/protobuf from 1.36.8 to 1.36.10 (#505) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/viper from 1.20.1 to 1.21.0 (#506) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#488) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/pflag from 1.0.7 to 1.0.10 (#489) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-go from 5 to 6 (#490) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/afero from 1.14.0 to 1.15.0 (#493) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/mod from 0.27.0 to 0.29.0 (#501) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 6 to 7 (#502) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump isbang/compose-action from 2.3.0 to 2.4.1 (#503) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump endorama/asdf-parse-tool-versions from 1.3.4 to 1.4.0 (#504) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump workbench to c94b3ce (#500) @arbulu89 * Bump workbench dependency (#497) @arbulu89 * Bump actions/cache from 4.2.4 to 4.3.0 (#496) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golangci/golangci-lint-action from 6 to 8 (#427) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/hashicorp/go-plugin from 1.6.3 to 1.7.0 (#473) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/stretchr/testify from 1.11.0 to 1.11.1 (#484) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 (#483) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0 (#479) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump google.golang.org/protobuf from 1.36.7 to 1.36.8 (#478) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/vektra/mockery/v2 from 2.53.4 to 2.53.5 (#476) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#472) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/mod from 0.26.0 to 0.27.0 (#471) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/cache from 4.2.3 to 4.2.4 (#470) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump google.golang.org/protobuf from 1.36.6 to 1.36.7 (#469) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump github.com/spf13/pflag from 1.0.6 to 1.0.7 (#463) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 5 to 6 (#451) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/mod from 0.25.0 to 0.26.0 (#460) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/sync from 0.15.0 to 0.16.0 (#461) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump isbang/compose-action from 2.2.0 to 2.3.0 (#456) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump workbench reference to latest updates (#454) @nelsonkopliku * Bump golang.org/x/mod from 0.24.0 to 0.25.0 (#447) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump golang.org/x/sync from 0.14.0 to 0.15.0 (#446) @[dependabot[bot]](https://github.com/apps/dependabot)
* *Full Changelog**: https://github.com/trento-project/agent/compare/2.5.0...3.0.0 ++++ trento-wanda: - Release 2.0.0 [#]# What's Changed * Release version 2.0.0 (#667) @nelsonkopliku * Remove unneeded references to jwt libraries and environment variables (#662) @nelsonkopliku * [TRNT-3845] Add missing examples in API spec (#657) @antgamdia * [TRNT-3845] Tag endpoints for MCP (#650) @antgamdia * [TRNT-3845] Enable API docs linter in CI (#648) @antgamdia * [TRNT-3845] Run API documentation linter in CI (#645) @antgamdia * Add host reboot operation (#640) @balanza * Fixes reference to md (#639) @gagandeepb * Elixir 1.18 and Erlang/OTP 27 (#638) @gagandeepb * Prepare wanda docs for autobuild (#637) @EMaksy * Add cluster start/stop operations to registry (#633) @balanza * Convert md docs to adoc (#630) @EMaksy * Update the env to include the architecture of a host (#627) @janvhs * Filter operations by status (#626) @arbulu89 * Add Docs for the fs_usage-Gatherer (#625) @janvhs * Enable operations in produdction (#621) @arbulu89 * Clustermaintenancechange (#616) @arbulu89 [#]## Features * Require AUTH_SERVER_URL only when token authentication is enabled (#664) @nelsonkopliku * Token introspection auth (#658) @nelsonkopliku * Add oas server url configuration option (#656) @arbulu89 * Openapi all spec (#653) @arbulu89 * Add deprecated flag to operation and schemas (#651) @arbulu89 * [TRNT-3845] Run linters on the API spec and fix the errors (controller) (#642) @antgamdia * [TRNT-3845] Run linters on the API spec and fix the errors (schemas) (#641) @antgamdia * [TRNT-3845] Combine API specs in a single file with improved feedback loop (#634) @antgamdia * [TRNT-3845] Make "api-bc-check" CI step check API against PR's target instead of main (#643) @antgamdia * Add database start/stop operations (#632) @arbulu89 * Add SAP system start/stop operations (#629) @arbulu89 * Add enable/disable pacemaker operations spec (#622) @nelsonkopliku * Add SAP instance start/stop operations (#619) @arbulu89 [#]## Bug Fixes * Add deprecated flag to operation and schemas (#651) @arbulu89 [#]## Maintenance * CI improvements (#663) @gagandeepb * Revert temporary changes (#661) @nelsonkopliku * Sync both stable and rolling versions in OBS (#631) @vicenteqa * use latest version of get latest tag action (#628) @vicenteqa * Fix CI obs image tarball creation (#624) @arbulu89 * Fix deps cache key in CI (#615) @nelsonkopliku [#]## Dependencies
11 changes * Bump actions/checkout from 5 to 6 (#666) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 6 to 7 (#654) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/upload-artifact from 4 to 5 (#659) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump endorama/asdf-parse-tool-versions from 1.3.4 to 1.4.0 (#660) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-node from 4 to 6 (#655) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#636) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 5 to 6 (#623) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump phoenix from 1.7.19 to 1.7.21 (#600) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump phoenix_ecto from 4.6.3 to 4.6.4 (#613) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump plug_cowboy from 2.7.2 to 2.7.3 (#580) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump credo from 1.7.11 to 1.7.12 (#614) @[dependabot[bot]](https://github.com/apps/dependabot)
* *Full Changelog**: https://github.com/trento-project/wanda/compare/1.5.0...2.0.0 ++++ trento-web: - Release 3.0.0 [#]# What's Changed * Release version 3.0.0 (#3929) @nelsonkopliku * Refine cluster start/stop policy (#3914) @balanza * Revert "Bump posthog-js from 1.297.0 to 1.297.3 in /assets (#3923)" (#3925) @gagandeepb * Storybook deps update (#3918) @gagandeepb * Add Nav Menu Scrollbar (#3791) @jagabomb * CI: Refine conditional logic (#3905) @balanza * CI: Conditionally run jobs (#3893) @balanza * Fix js flaky tests (#3887) @vicenteqa * Remove clusters unused functions (#3892) @arbulu89 * Host reboot button always enable (#3891) @balanza * increase timeout for flaky test analysis job (#3888) @vicenteqa * Update README.adoc (#3872) @ajaeger * Fix reboot operation (#3870) @balanza * Bump eslint from 8.57.0 to 9.38.0 in /assets (#3838) @balanza * Stabilize e2e test (#3850) @balanza * Upgrade React to v19 (#3833) @balanza * Split static analysis between js and elixir (#3842) @balanza * Make PATs opaque tokens (#3821) @nelsonkopliku * Revert "Bump @faker-js/faker from 9.4.0 to 10.1.0 in /assets" (#3829) @balanza * [TRNT-3845] Tag endpoints for MCP (#3800) @antgamdia * Add host reboot button (#3768) @balanza * Preserve cluster status on host registration (#3823) @balanza * Improve alerting settings test coverage (#3788) @vicenteqa * Add personal access tokens feature e2e tests (#3794) @arbulu89 * Fixes nodejs references in CI workflow (#3804) @gagandeepb * [TRNT-3845] Fix personal access token openapi warning (#3796) @arbulu89 * Makes npm version constraints flexible (#3789) @gagandeepb * Fix Flaky test - Activity log should reset pagination when filters changed (#3784) @vicenteqa * Update saml certificates (#3781) @nelsonkopliku * Enable host boot operation (#3771) @balanza * Update trento docs link in layout (#3772) @arbulu89 * [TRNT-3845] Run API documentation linter in CI (#3774) @antgamdia * Add host reboot operation policy on sap system (#3767) @balanza * Add cluster host start/stop ops to activity log (#3706) @balanza * Adds support/compatibility with Elixir 1.18, Erlang/OTP 27 and Nodejs 22 (#3722) @gagandeepb * Add host reboot operation policy (#3723) @balanza * Fix failure rate calculation e2e flaky tests (#3753) @vicenteqa * Prepare documentation for auto build process (#3733) @EMaksy * Fix 'change refresh rate' flaky test in activity log test suite (#3751) @vicenteqa * Fix flaky test activity log start refresh ticker (#3750) @vicenteqa * Refactors dispatch functions and their usage (#3715) @gagandeepb * Improve flaky tests e2e summary (#3718) @vicenteqa * Fix flaky test totp login cases for Users test suite (#3716) @vicenteqa * Fix flaky test - Link to known clusters in SAP Systems Overview (#3713) @vicenteqa * Add activity log entry for ClusterHostStatusChanged event (#3712) @balanza * Fix flaky test for Hana cluster details forbidden actions (#3710) @vicenteqa * Cluster host start/stop operations user policy (#3700) @balanza * Add cluster start and stop operations to the controller (#3691) @balanza * Add database operations redux saga part (#3698) @arbulu89 * Fix version usage in page_controller (#3696) @arbulu89 * fix release workflow (#3662) @stefanotorresi * Convert markdown docs to adoc (#3601) @EMaksy * Rescue on discovery exceptions (#3659) @skrech * Run flaky test analysis every day (#3657) @nelsonkopliku * Fix Flaky test in activity log page when selecting every different refresh rate. (#3653) @vicenteqa * Expect offline flag from discovery (#3647) @balanza * Add cluster status field to host projection (#3631) @balanza * Fix Host OpenApi spec (#3635) @balanza * Discovery offline host message (#3630) @balanza * Rename RegisterClusterHost into RegisterOnlineClusterHost (#3629) @balanza * Handle offline host in cluster (#3623) @balanza * Set dynamic validation for checks amount e2e test (#3609) @vicenteqa * Added e2e tests for alerting (#3570) @skrech * Update Scenario Fixtures to Include Architecture (#3597) @janvhs * Add Architecture to HostInfoBox (#3592) @janvhs * Filter checks catalog (#3593) @janvhs * Architecture based checks execution (#3590) @janvhs * Arch discovery (#3553) @janvhs * Increase timeout for Cypress tests execution flaky tests analysis (#3576) @vicenteqa * SAP instance start/stop policy (#3565) @arbulu89 * Fix settings tests before each failure (#3560) @vicenteqa * Bump storybook from 8.4.6 to 9.0.5 in /assets (#3555) @balanza * Enable operations in production (#3558) @arbulu89 * Show error when fail to fetch data from SUSE Manager (#3551) @balanza * Fix start/stop AgentHeartbeat logic in before/after Each hooks in e2e tests (#3537) @vicenteqa * Table top margin (#3517) @arbulu89 [#]## Features * Build containers on deploy-demo from wanda (#3901) @nelsonkopliku * Avoid PAT collision in test (#3895) @nelsonkopliku * Simplify reboot operation policy to only check current host cluster (#3889) @arbulu89 * Fix cluster hosts operations state (#3880) @arbulu89 * Handle database stop when system replication is not enabled (#3862) @arbulu89 * Fix sap system stop operation policy for scs instance type (#3860) @arbulu89 * Remove abilities from token claims (#3775) @nelsonkopliku * Add OAS server url variable (#3827) @arbulu89 * Token introspect endpoint (#3785) @nelsonkopliku * Cluster discovery handle empty node history (#3818) @arbulu89 * Forbid cluster maintenance change all offline (#3820) @arbulu89 * Personal access tokens activity log (#3817) @arbulu89 * Openapi `All` specification (#3811) @arbulu89 * Token introspection (#3778) @nelsonkopliku * Show and revoke personal access token in user edition view (#3808) @arbulu89 * Add deprecated flag to operation and schemas (#3809) @arbulu89 * Personal access tokens profile frontend (#3793) @arbulu89 * [TRNT-3845] Run linters on the API spec and fix the errors (controllers: routes) (#3764) @antgamdia * UI Personal access tokens modals (#3790) @arbulu89 * PAT authentication (#3777) @nelsonkopliku * Revoke Personal Access Tokens (#3749) @nelsonkopliku * Retrieve user Personal Access Tokens (#3745) @nelsonkopliku * Personal Access Token creation (#3739) @nelsonkopliku * [TRNT-3845] Run linters on the API spec and fix the errors (controllers: unprocessable_entity) (#3762) @antgamdia * [TRNT-3845] Run linters on the API spec and fix the errors (controllers: properties) (#3763) @antgamdia * Polish openapi spec (#3676) @nelsonkopliku * SAP system start/stop policy (#3721) @arbulu89 * Analytics Eula Modal (#3701) @jagabomb * Add cluster host start/stop to the trento UI (#3705) @balanza * Database start/stop policy (#3719) @arbulu89 * Make system/database operations self-exclusive and disable some options (#3717) @arbulu89 * Add database and site operation buttons (#3702) @arbulu89 * System replication stopped instances (#3708) @arbulu89 * Add disabled option to operations button (#3704) @arbulu89 * Database start/stop activity logging (#3697) @arbulu89 * SAP and databases start/stop operation modal (#3695) @arbulu89 * Database start/stop operations user policies (#3683) @arbulu89 * SMLM settings save/change correlation (#3640) @gagandeepb * Request database operation (#3680) @arbulu89 * Analytics Add Version Code (#3625) @jagabomb * Add system replication details (#3669) @arbulu89 * Show host cluster status (#3664) @balanza * SAP system start/stop frontend saga request (#3658) @arbulu89 * SAP start/stop operation activity log (#3656) @arbulu89 * Start/stop SAP system user policy (#3652) @arbulu89 * SAP system operation route (#3644) @arbulu89 * Sort system replication tier (#3637) @arbulu89 * Move replication status to back to primary (#3627) @arbulu89 * Advanced system replication fields (#3626) @arbulu89 * Correlation of heartbeat entries after API key regeneration (#3606) @gagandeepb * Enforce pacemaker operation policy to rely on discovered state (#3620) @nelsonkopliku * Enable/disable pacemaker systemd ops based on current state (#3614) @nelsonkopliku * Cluster resource operations (#3615) @arbulu89 * Handle crmmon group managed (#3616) @arbulu89 * Resources table frontend (#3608) @arbulu89 * Request host discovery on pacemaker ops (#3613) @nelsonkopliku * Handle systemd units host discovery (#3610) @nelsonkopliku * Expose cluster resources (#3605) @arbulu89 * Correlation of operations activity log entries (#3600) @gagandeepb * Fix SAP instance cluster maintenance authorization (#3580) @arbulu89 * Add pacemaker ops to activity log (#3602) @nelsonkopliku * Request pacemaker enable UI (#3586) @nelsonkopliku * Add chevron collapsible table (#3598) @arbulu89 * Alerting Settings events in the ActivityLog (#3596) @skrech * Activity log correlation for deregistration entries (#3554) @gagandeepb * Update running operations refresh (#3591) @arbulu89 * App instance operation activity log (#3585) @arbulu89 * Add a cumulative photofinish demo scenario (#3594) @nelsonkopliku * Alerting settings schema/model (#3461) @skrech * Add accept operation modal (#3588) @nelsonkopliku * Request SAP instance operation (#3577) @arbulu89 * Improve cluster controller policy related test (#3583) @nelsonkopliku * SAP instance start/stop user policy (#3582) @arbulu89 * Pacemaker enable disable policy (#3581) @nelsonkopliku * Request pacemaker enable/disable (#3578) @nelsonkopliku * Add operations button to SAP instance in table (#3575) @arbulu89 * Add transparent prop to operations button (#3566) @arbulu89 * Add SAP instance start/stop modal (#3561) @arbulu89 * SAP system operation request (#3550) @arbulu89 * Split host and cluster operation requested activity logging (#3539) @arbulu89 * Harden saptune operation policy (#3535) @nelsonkopliku * Request cluster discovery on operation complete event (#3538) @arbulu89 * Cluster maintenance change backend (#3532) @arbulu89 * Show relevant saptune solution options (#3533) @nelsonkopliku * Cluster maintenance operation frontend (#3529) @arbulu89 * Update host saptune status on SAP instances de/registration (#3514) @arbulu89 * Add `forwardRef` to button component (#3528) @arbulu89 * Add fixed witdh to relevant patches synopsis (#3521) @arbulu89 * Add CODEOWNERS (#3518) @nelsonkopliku * Analytics Settings UI with Collection to Posthog (#3449) @jagabomb * Add the ability to request a saptune solution change (#3488) @nelsonkopliku * Expose cluster resource parent api (#3482) @arbulu89 [#]## Bug Fixes * Add AUTH_SERVER_URL to wanda container (#3858) @nelsonkopliku * Updated HTTPoison to 2.2.3 (#3783) @skrech * Handle host_not_registered error in saptune event handler (#3773) @arbulu89 * Handle null node attributes nodes list (#3709) @arbulu89 * Fix malformed discovery event causing an error (#3663) @skrech * Fix SAP instance cluster maintenance authorization (#3580) @arbulu89 * Fixes for Analytics Events (#3530) @jagabomb [#]## Maintenance * Use gh action concurrency (#3911) @nelsonkopliku * Remove unused CI env variable (#3910) @nelsonkopliku * Build containers on deploy-demo from wanda (#3901) @nelsonkopliku * Regenerate package lock (#3879) @nelsonkopliku * Remove unnecessary env variable from wanda (#3869) @nelsonkopliku * Fix photofinish permissions (#3861) @nelsonkopliku * CI Improvements (#3816) @gagandeepb * Implements nodejs matrix strategy (#3798) @gagandeepb * [TRNT-3845] Enable API docs linter in CI (#3797) @antgamdia * Use latest version of endorama/asdf-parse-tool-versions to avoid using deprecated set-output command in gh actions. (#3622) @vicenteqa * Fix operation resource type mapping (#3621) @nelsonkopliku * Removal of unused dependency (#3599) @gagandeepb * More ci improvements (#3569) @stefanotorresi * More ci fixes (#3516) @stefanotorresi * Unify cluster details header code in new component (#3486) @arbulu89 [#]## Dependencies
136 changes * Bump posthog-js from 1.297.0 to 1.297.3 in /assets (#3923) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump esbuild from 0.25.12 to 0.27.0 in /assets (#3920) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump html-webpack-plugin from 5.6.4 to 5.6.5 in /assets (#3924) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 5 to 6 (#3915) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump posthog-js from 1.290.0 to 1.297.0 in /assets (#3913) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump glob from 10.4.5 to 10.5.0 in /assets (#3908) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.3.3 to 13.3.4 (#3909) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-jest from 29.0.1 to 29.1.0 in /assets (#3882) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump js-yaml from 4.1.0 to 4.1.1 in /test/e2e (#3906) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump js-yaml in /assets (#3907) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dawidd6/action-ansible-playbook from 4 to 5 (#3824) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/metadata-action from 5.8.0 to 5.9.0 (#3863) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromatic from 13.1.2 to 13.3.3 in /assets (#3874) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump esbuild from 0.25.9 to 0.25.12 in /assets (#3866) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-select from 5.9.0 to 5.10.2 in /assets (#3867) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump redux-saga from 1.3.0 to 1.4.2 in /assets (#3839) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.3.2 to 13.3.3 (#3854) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump semver from 7.7.2 to 7.7.3 in /assets (#3856) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-router from 7.8.1 to 7.9.5 in /assets (#3855) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/preset-env from 7.28.0 to 7.28.5 in /assets (#3851) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-hot-toast from 2.5.1 to 2.6.0 in /assets (#3836) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump babel-jest from 30.0.5 to 30.2.0 in /assets (#3835) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @messageformat/runtime from 3.0.1 to 3.0.2 in /assets (#3853) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/preset-react from 7.27.1 to 7.28.5 in /assets (#3847) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/core from 7.28.3 to 7.28.5 in /assets (#3840) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 5 to 6 (#3844) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.3.1 to 13.3.2 (#3843) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/upload-artifact from 4 to 5 (#3846) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump tailwindcss from 3.4.16 to 3.4.18 in /assets (#3837) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-node from 4 to 6 (#3826) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 6 to 7 (#3831) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/login-action from 3.5.0 to 3.6.0 (#3806) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.1.5 to 13.3.1 (#3834) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump isbang/compose-action from 2.3.0 to 2.4.1 (#3825) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @faker-js/faker from 9.4.0 to 10.1.0 in /assets (#3828) @[dependabot[bot]](https://github.com/apps/dependabot) * Remove `canvas` from prod deps in ./assets (#3803) @skrech * Bump tar-fs from 2.1.3 to 2.1.4 in /assets (#3801) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.1.4 to 13.1.5 (#3776) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump axios from 1.11.0 to 1.12.2 in /assets (#3770) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/setup-node from 4 to 5 (#3754) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/github-script from 7 to 8 (#3756) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.1.3 to 13.1.4 (#3752) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump html-webpack-plugin from 5.6.3 to 5.6.4 in /assets (#3740) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump jest-environment-jsdom from 30.0.4 to 30.0.5 in /assets (#3738) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump jest from 30.0.4 to 30.0.5 in /assets (#3736) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump canvas from 3.1.2 to 3.2.0 in /assets (#3735) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump posthog-js from 1.227.0 to 1.260.1 in /assets (#3734) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-import from 2.31.0 to 2.32.0 in /assets (#3732) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chart.js from 4.4.7 to 4.5.0 in /assets (#3731) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/addon-docs from 9.1.0 to 9.1.2 in /assets (#3730) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @headlessui/react from 2.2.5 to 2.2.7 in /assets (#3729) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/core from 7.28.0 to 7.28.3 in /assets (#3728) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump postcss-import from 16.1.0 to 16.1.1 in /assets (#3727) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump brace-expansion in /test/e2e (#3726) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/download-artifact from 4 to 5 (#3703) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @date-fns/utc from 2.1.0 to 2.1.1 in /assets (#3692) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump esbuild from 0.25.6 to 0.25.9 in /assets (#3725) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-router from 7.6.3 to 7.8.1 in /assets (#3724) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/metadata-action from 5.7.0 to 5.8.0 (#3693) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump tmp from 0.2.1 to 0.2.4 in /test/e2e (#3707) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump actions/checkout from 4 to 5 (#3720) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/login-action from 3.4.0 to 3.5.0 (#3699) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/addon-docs from 9.0.17 to 9.1.0 in /assets (#3689) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.1.2 to 13.1.3 (#3690) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-storybook from 9.0.18 to 9.1.0 in /assets (#3688) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump babel-loader from 9.2.1 to 10.0.0 in /assets (#3685) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump rc-input-number from 9.3.0 to 9.5.0 in /assets (#3684) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-storybook from 9.0.9 to 9.0.18 in /assets (#3681) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump papaparse from 5.4.1 to 5.5.3 in /assets (#3682) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump postcss from 8.4.49 to 8.5.6 in /assets (#3679) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/preset-env from 7.26.0 to 7.28.0 in /assets (#3674) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-jest from 28.9.0 to 29.0.1 in /assets (#3673) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-react from 7.37.2 to 7.37.5 in /assets (#3671) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump autoprefixer from 10.4.20 to 10.4.21 in /assets (#3672) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump axios from 1.10.0 to 1.11.0 in /assets (#3665) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @headlessui/react from 2.2.0 to 2.2.5 in /assets (#3667) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromatic from 11.25.0 to 13.1.2 in /assets (#3666) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/react from 9.0.17 to 9.0.18 in /assets (#3661) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump babel-jest from 29.7.0 to 30.0.5 in /assets (#3660) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump form-data and @cypress/request in /test/e2e (#3655) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump form-data from 4.0.0 to 4.0.4 in /assets (#3654) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/addon-docs from 9.0.9 to 9.0.17 in /assets (#3651) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-config-prettier from 9.1.0 to 10.1.8 in /assets (#3650) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump axios from 1.9.0 to 1.10.0 in /assets (#3648) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/react from 9.0.16 to 9.0.17 in /assets (#3649) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/preset-react from 7.26.3 to 7.27.1 in /assets (#3645) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump esbuild from 0.25.0 to 0.25.6 in /assets (#3646) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump jest-environment-jsdom from 29.7.0 to 30.0.4 in /assets (#3641) @[dependabot[bot]](https://github.com/apps/dependabot) * Fix jest expectations (#3643) @nelsonkopliku * Bump jest from 29.7.0 to 30.0.4 in /assets (#3642) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-router-dom from 6.28.0 to 7.6.3 in /assets (#3604) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump rc-tooltip from 6.3.1 to 6.4.0 in /assets (#3639) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/react from 9.0.5 to 9.0.16 in /assets (#3638) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-error-boundary from 4.1.2 to 6.0.0 in /assets (#3636) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-chartjs-2 from 5.2.0 to 5.3.0 in /assets (#3634) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-accessible-treeview from 2.10.0 to 2.11.2 in /assets (#3632) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dawidd6/action-ansible-playbook from 3 to 4 (#3574) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump react-markdown from 9.0.1 to 10.1.0 in /assets (#3572) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.1.0 to 13.1.2 (#3617) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump isbang/compose-action from 2.2.0 to 2.3.0 (#3611) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 13.0.1 to 13.1.0 (#3612) @[dependabot[bot]](https://github.com/apps/dependabot) * Removal of unused dependency (#3599) @gagandeepb * Bump chromaui/action from 13.0.0 to 13.0.1 (#3584) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 12.2.0 to 13.0.0 (#3579) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump stefanzweifel/git-auto-commit-action from 5 to 6 (#3564) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump eslint-plugin-storybook from 0.11.1 to 9.0.9 in /assets (#3568) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/addon-docs from 9.0.5 to 9.0.9 in /assets (#3567) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 12.1.1 to 12.2.0 (#3559) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 12.1.0 to 12.1.1 (#3557) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dflook/terraform-new-workspace from 1 to 2 (#3544) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dflook/terraform-destroy-workspace from 1 to 2 (#3545) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dflook/terraform-apply from 1 to 2 (#3546) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dflook/terraform-output from 1 to 2 (#3547) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 12.0.0 to 12.1.0 (#3549) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @testing-library/user-event from 14.5.2 to 14.6.1 in /assets (#3534) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 11.28.3 to 12.0.0 (#3525) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump rc-input from 1.7.1 to 1.8.0 in /assets (#3531) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump fishery from 2.2.2 to 2.3.1 in /assets (#3526) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/addon-webpack5-compiler-babel from 3.0.3 to 3.0.6 in /assets (#3524) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 11.28.2 to 11.28.3 (#3522) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump remark-gfm from 4.0.0 to 4.0.1 in /assets (#3520) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump jaxxstorm/action-install-gh-release from 1.14.0 to 2.1.0 (#3519) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @storybook/preview-api from 8.4.7 to 8.6.14 in /assets (#3511) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump chromaui/action from 11.25.2 to 11.28.2 (#3464) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump esbuild and tsx in /test/e2e (#3452) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/runtime from 7.23.2 to 7.27.0 in /assets (#3453) @[dependabot[bot]](https://github.com/apps/dependabot) * Add CODEOWNERS (#3518) @nelsonkopliku * Bump @babel/helpers from 7.20.7 to 7.26.10 in /test/e2e (#3384) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/metadata-action from 5.6.1 to 5.7.0 (#3342) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump docker/login-action from 3.3.0 to 3.4.0 (#3386) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump @babel/runtime from 7.20.7 to 7.26.10 in /test/e2e (#3383) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump serialize-javascript from 6.0.1 to 6.0.2 in /assets (#3324) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump dawidd6/action-ansible-playbook from 2 to 3 (#3287) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump isbang/compose-action from 2.1.0 to 2.2.0 (#3264) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump undici from 5.28.5 to 5.29.0 in /test/e2e (#3505) @[dependabot[bot]](https://github.com/apps/dependabot) * Bump axios from 1.7.9 to 1.9.0 in /assets (#3475) @[dependabot[bot]](https://github.com/apps/dependabot)
* *Full Changelog**: https://github.com/trento-project/web/compare/2.5.0...3.0.0 ------------------------------------------------------------------ ------------------ 2025-11-26 - Nov 26 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-default: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-rt: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ dtb-aarch64: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ go1.25: - Fix runtime condition for gcc/gcc7 dependency. ++++ go1.25: - Fix runtime condition for gcc/gcc7 dependency. ++++ kernel-source: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-docs: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-kvmsmall: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-livepatch-SLE16_Update_3: - New branch for SLE16_Update_3 - commit 9e2f034 ++++ kernel-livepatch-SLE16-RT_Update_3: - New branch for SLE16-RT_Update_3 - commit 58a68b4 ++++ kernel-obs-build: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-obs-qa: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-syms: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ kernel-zfcpdump: - vhost: Take a reference on the task in struct vhost_task (CVE-2025-40024 bsc#1252686) - commit b3a75c3 - net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work (CVE-2025-40003 bsc#1252301) - commit 0fea05a - fbnic: Move phylink resume out of service_task and into open/close (CVE-2025-39831 bsc#1249977) - commit bfb2b64 - ipv6: use RCU in ip6_output() (CVE-2025-40158 bsc#1253402). - commit e408492 - ipv6: use RCU in ip6_xmit() (CVE-2025-40135 bsc#1253342). - commit 7761cf8 - Delete patches.suse/sched-fair-Get-rid-of-sched_domains_curr_level-hack-for-tl-cpumask.patch. patches.suse/sched-topology-Refinement-to-topology_span_sane-speedup.patch. patches.suse/sched-topology-improve-topology_span_sane-speed.patch. (bsc#1246843) - commit cbe4772 - tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (CVE-2025-40149 bsc#1253355). - commit 952ca78 - mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - mptcp: Call dst_release() in mptcp_active_enable() (CVE-2025-40133 bsc#1253328). - commit 995c058 - sched/fair: Get rid of sched_domains_curr_level hack for tl->cpumask() (bsc#1246843). - x86/smpboot: avoid SMT domain attach/destroy if SMT is not enabled (bsc#1246843). - x86/smpboot: moves x86_topology to static initialize and truncate (bsc#1246843). - x86/smpboot: remove redundant CONFIG_SCHED_SMT (bsc#1246843). - smpboot: introduce SDTL_INIT() helper to tidy sched topology setup (bsc#1246843). - commit ce47c32 - smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (CVE-2025-40168 bsc#1253427). - commit 53c7932 - smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (CVE-2025-40139 bsc#1253409). - commit e1e0529 - smc: Fix use-after-free in __pnet_find_base_ndev() (CVE-2025-40064 bsc#1252845). - commit 186d68e - tcp_metrics: use dst_dev_net_rcu() (CVE-2025-40075 bsc#1252795). - commit 771932c - Update patches.suse/ALSA-pcm-Disable-bottom-softirqs-as-part-of-spin_loc.patch (git-fixes CVE-2025-40142 bsc#1253348). - Update patches.suse/ASoC-Intel-bytcr_rt5640-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40154 bsc#1253431). - Update patches.suse/ASoC-Intel-bytcr_rt5651-Fix-invalid-quirk-input-mapp.patch (git-fixes CVE-2025-40121 bsc#1253367). - Update patches.suse/ASoC-Intel-sof_sdw-Prevent-jump-to-NULL-add_sidecar-.patch (git-fixes CVE-2025-40132 bsc#1253330). - Update patches.suse/ASoC-amd-sdw_utils-avoid-NULL-deref-when-devm_kaspri.patch (git-fixes CVE-2025-40162 bsc#1253422). - Update patches.suse/Bluetooth-ISO-Fix-possible-UAF-on-iso_conn_free.patch (git-fixes CVE-2025-40141 bsc#1253352). - Update patches.suse/PM-devfreq-mtk-cci-Fix-potential-error-pointer-deref.patch (git-fixes CVE-2025-40156 bsc#1253428). - Update patches.suse/Revert-ipmi-fix-msg-stack-when-IPMI-is-disconnected.patch (stable-fixes CVE-2025-40192 bsc#1253622). - Update patches.suse/Squashfs-reject-negative-file-sizes-in-squashfs_read_inode.patch (git-fixes CVE-2025-40200 bsc#1253448). - Update patches.suse/accel-qaic-Fix-bootlog-initialization-ordering.patch (git-fixes CVE-2025-40177 bsc#1253443). - Update patches.suse/accel-qaic-Treat-remaining-0-as-error-in-find_and_ma.patch (git-fixes CVE-2025-40172 bsc#1253424). - Update patches.suse/bpf-Fix-metadata_dst-leak-__bpf_redirect_neigh_v-4-6.patch (git-fixes CVE-2025-40183 bsc#1253441). - Update patches.suse/btrfs-avoid-potential-out-of-bounds-in-btrfs_encode_.patch (git-fixes CVE-2025-40205 bsc#1253456). - Update patches.suse/can-hi311x-fix-null-pointer-dereference-when-resumin.patch (stable-fixes CVE-2025-40107 bsc#1253018). - Update patches.suse/cpufreq-intel_pstate-Fix-object-lifecycle-issue-in-update_qos_request.patch (git-fixes CVE-2025-40194 bsc#1253445). - Update patches.suse/crypto-rng-Ensure-set_ent-is-always-present.patch (git-fixes CVE-2025-40109 bsc#1253176). - Update patches.suse/drm-vmwgfx-Fix-Use-after-free-in-validation.patch (git-fixes CVE-2025-40111 bsc#1253362). - Update patches.suse/drm-vmwgfx-Fix-a-null-ptr-access-in-the-cursor-snoop.patch (git-fixes CVE-2025-40110 bsc#1253275). - Update patches.suse/drm-xe-guc-Check-GuC-running-state-before-deregister.patch (git-fixes CVE-2025-40166 bsc#1253433). - Update patches.suse/ext4-avoid-potential-buffer-over-read-in-parse_apply.patch (git-fixes CVE-2025-40198 bsc#1253453). - Update patches.suse/fs-quota-create-dedicated-workqueue-for-quota_releas.patch (git-fixes CVE-2025-40196 bsc#1253624). - Update patches.suse/hwrng-ks-sa-fix-division-by-zero-in-ks_sa_rng_init.patch (git-fixes CVE-2025-40127 bsc#1253369). - Update patches.suse/ipmi-Rework-user-message-limit-handling.patch (git-fixes CVE-2025-40202 bsc#1253451). - Update patches.suse/mailbox-zynqmp-ipi-Fix-SGI-cleanup-on-unbind.patch (git-fixes CVE-2025-40161 bsc#1253410). - Update patches.suse/mailbox-zynqmp-ipi-Fix-out-of-bounds-access-in-mailb.patch (git-fixes CVE-2025-40180 bsc#1253440). - Update patches.suse/media-mc-Clear-minor-number-before-put-device.patch (git-fixes CVE-2025-40197 bsc#1253450). - Update patches.suse/media-nxp-imx8-isi-m2m-Fix-streaming-cleanup-on-rele.patch (git-fixes CVE-2025-40165 bsc#1253405). - Update patches.suse/media-v4l2-subdev-Fix-alloc-failure-check-in-v4l2_su.patch (git-fixes CVE-2025-40207 bsc#1253395). - Update patches.suse/net-sctp-fix-a-null-dereference-in-sctp_disposition-.patch (git-fixes CVE-2025-40187 bsc#1253647). - Update patches.suse/net-usb-Remove-disruptive-netif_wake_queue-in-rtl815.patch (git-fixes CVE-2025-40140 bsc#1253349). - Update patches.suse/net-usb-asix-hold-PM-usage-ref-to-avoid-PM-MDIO-RTNL.patch (git-fixes CVE-2025-40120 bsc#1253360). - Update patches.suse/nvmet-fc-move-lsop-put-work-to-nvmet_fc_ls_req_op.patch (bsc#1245193 bsc#1247500 CVE-2025-40171 bsc#1253412). - Update patches.suse/pwm-berlin-Fix-wrong-register-in-suspend-resume.patch (git-fixes CVE-2025-40188 bsc#1253449). - Update patches.suse/scsi-mpt3sas-Fix-crash-in-transport-port-remove-by-using-i.patch (git-fixes CVE-2025-40115 bsc#1253318). - Update patches.suse/scsi-pm80xx-Fix-array-index-out-of-of-bounds-on-rmmod.patch (git-fixes CVE-2025-40118 bsc#1253363). - Update patches.suse/sctp-Fix-MAC-comparison-to-be-constant-time.patch (git-fixes CVE-2025-40204 bsc#1253436). - Update patches.suse/sunrpc-fix-null-pointer-dereference-on-zero-length-checksum.patch (git-fixes CVE-2025-40129 bsc#1253472). - Update patches.suse/tcp-Don-t-call-reqsk_fastopen_remove-in-tcp_conn_request.patch (git-fixes CVE-2025-40186 bsc#1253438). - Update patches.suse/usb-host-max3421-hcd-Fix-error-pointer-dereference-i.patch (git-fixes CVE-2025-40116 bsc#1253324). - Update patches.suse/usbnet-Fix-using-smp_processor_id-in-preemptible-cod.patch (git-fixes CVE-2025-40164 bsc#1253407). - commit 6d826bc - iommu/amd/pgtbl: Fix possible race while increase page table level (bsc#1251817 CVE-2025-39961). - commit 1eb24e4 - Fix "drm/xe: Don't allow evicting of BOs in same VM in array of VM binds" (bsc#1252923) Fix the following compiler warning: * no semicolon at end of struct or union in ../drivers/gpu/drm/xe/xe_vm_types.h In file included from ../drivers/gpu/drm/xe/xe_bb.c:16:0: ../drivers/gpu/drm/xe/xe_vm_types.h:393:1: warning: no semicolon at end of struct or union - drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923 CVE-2025-40086) - commit 89cd9fa ++++ openvswitch: - Update OVN to 25.03.1 * Bug fixes - Update Openvswitch to 3.5.2 * Bug fixes ++++ salt: - Add minimum_auth_version to enforce security (CVE-2025-62349) - Backport security fixes for vendored tornado * BDSA-2024-3438 * BDSA-2024-3439 * BDSA-2024-9026 - Junos module yaml loader fix (CVE-2025-62348) - Added: * backport-3006.17-security-fixes-739.patch ++++ salt-test: - Add minimum_auth_version to enforce security (CVE-2025-62349) - Backport security fixes for vendored tornado * BDSA-2024-3438 * BDSA-2024-3439 * BDSA-2024-9026 - Junos module yaml loader fix (CVE-2025-62348) - Added: * backport-3006.17-security-fixes-739.patch ++++ rawtherapee: - Update to 5.12 - The Raw Black Points has a new option called Dehaze. It sets the black points to the minimum values in the image, which often has the effect of reducing haze. - Distortion Correction gained a de-fish feature that converts fisheye images into normal (rectilinear) images. It works best with the equidistant fisheye projection. The new Scale adjuster in Lens / Geometry allows manual scaling of the transformed image for when Auto-fill yields unsatisfactory results. - All images in a Canon RAW burst mode file are accessible. Previously, only the first 6 images were accessible. - A new tool called Gamut Compression applies the ACES (Academy Color Encoding System) Reference Gamut Compression operator to improve the look of highly-saturated colors and bring colors within a selectable gamut before applying other color-related tools offered by RawTherapee. - The Resize tool gained a framing feature that adds a decorative solid color border around the image before it is saved. Various sizing options allow great flexibility in adjusting the border thickness and image dimensions. To reflect the tool’s capabilities, it has been renamed to Resize & Framing. - Demosaiced floating-point DNGs are now supported. - The Abstract Profile tool has a new Contrast Enhancement feature that offers a simple way to add local contrast. It can be used to restore contrast lost due to the application of the abstract profile. - The Color appearance tool in Selective Editing gained several Tone Mapping Operators (formerly Highlight Attenuation & Levels) enhancements in Source Data Adjustments. The RGB channel Slope tone mapper (formerly Levels) has new options. There is a new Sigmoid based tone mapper. - More Sony lenses are recognized, improving the data displayed in the quick info overlay and enabling automatic profiled lens correction. - The Shadows/Highlights & Tone Equalizer tool in Selective Editing gained the Generalized Hyperbolic Stretch (GHS) global tone mapper. To reflect the tool’s new tone mapper, it has been renamed to Shadows/Highlights, Equalizer & GHS. - Added or improved support for cameras, raw formats and color profiles (not an exhaustive list because unconfirmed support is excluded): - Canon EOS R8 (DCP, black level in electronic shutter mode) - Fujifilm X-E4 (raw crop in electronic shutter mode) - Sony ILCE-7CR (pixel shift) - Sony ILCE-7M3 (black level) - Sony ILME-FX3 (black level when not using LibRaw) ++++ suse-migration-services: - Drop wicked component after nm migration After successful wicked to network manager migration drop the wicked components from the migrated system. This Fixes #421 - Move script package to the main migration provider In the effort to provide a common script code package, the package suse-migration-sle16-scripts was provided. During testing I found that not all places where script duplication exists was covered. This commit addresses the code that was missed and also suggests that we move the common script code as a sub package to the main suse-migration-services package. The reason here is that the common code is not only used in the activation package. In addition I also suggest that the package name changes to be more generic. The reason here is that this will go beyond sle16 and can also contain common script code for sle15 migrations as well as for past sle16 migrations as we are moving forward. As such my suggestion to also rename the package to just suse-migration-scripts. ------------------------------------------------------------------ ------------------ 2025-11-25 - Nov 25 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-default: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-rt: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ dtb-aarch64: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ git-bug: - Revendor to include fixed version of depending libraries: - GO-2025-4116 (CVE-2025-47913, bsc#1253506) upgrade golang.org/x/crypto to v0.43.0 - GO-2025-3900 (GHSA-2464-8j7c-4cjm) upgrade github.com/go-viper/mapstructure/v2 to v2.4.0 - GO-2025-3787 (GHSA-fv92-fjc5-jj9h) included in the previous - GO-2025-3754 (GHSA-2x5j-vhc8-9cwm) upgrade github.com/cloudflare/circl to v1.6.1 - GO-2025-4134 (CVE-2025-58181, bsc#1253930) upgrade golang.org/x/crypto/ssh to v0.45.0 - GO-2025-4135 (CVE-2025-47914, bsc#1254084) upgrade golang.org/x/crypto/ssh/agent to v0.45.0 ++++ go1.25: - On SLE 12, s390x needs at least gcc 7. But lets use it for all architectures. (bsc#1254227) ++++ go1.25: - On SLE 12, s390x needs at least gcc 7. But lets use it for all architectures. (bsc#1254227) ++++ helmfile: - Update to version 1.2.1: * build(deps): bump azure/setup-helm from 4.3.0 to 4.3.1 by @dependabot[bot] in #2274 * build(deps): bump github.com/helmfile/vals from 0.42.4 to 0.42.5 by @dependabot[bot] in #2272 * build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 by @dependabot[bot] in #2277 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.90.2 to 1.91.1 by @dependabot[bot] in #2284 * Fix four critical issues: environment merging, kubeVersion detection, lookup() with kustomize, and Helm 4 color flags by @aditmeno in #2276 * build(deps): bump go.uber.org/zap from 1.27.0 to 1.27.1 by @dependabot[bot] in #2283 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.20 to 1.32.0 by @dependabot[bot] in #2282 * build(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in #2287 * build(deps): bump k8s.io/client-go from 0.34.1 to 0.34.2 by @dependabot[bot] in #2285 * Fix four critical bugs: array merging (#2281), AWS SDK logging (#2270), helmDefaults skip flags (#2269), and OCI chart versions (#2247) by @aditmeno in #2288 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.91.1 to 1.92.0 by @dependabot[bot] in #2286 ++++ kernel-source: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-docs: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-kvmsmall: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-obs-build: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-obs-qa: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-syms: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ kernel-zfcpdump: - ipv4: start using dst_dev_rcu() (CVE-2025-40074 bsc#1252794). - commit 6cfda9e - kabi: hide dst_entry::dev_rcu (CVE-2025-40074 bsc#1252794). - commit fdd7887 - net: dst: introduce dst->dev_rcu (CVE-2025-40074 bsc#1252794). - commit 13867db - net: Add locking to protect skb->dev access in ip_output (CVE-2025-40074 bsc#1252794). - commit 2cdabe8 - ipv6: ip6_mc_input() and ip6_mr_input() cleanups (CVE-2025-40074 bsc#1252794). - commit fa3386d - ipv6: adopt skb_dst_dev() and skb_dst_dev_net[_rcu]() helpers (CVE-2025-40074 bsc#1252794). - commit c2db144 - ipv6: adopt dst_dev() helper (CVE-2025-40074 bsc#1252794). - refresh patches.suse/net-ip6_tunnel-Prevent-perpetual-tunnel-growth.patch - commit c4ea44a - ipv4: adopt dst_dev, skb_dst_dev and skb_dst_dev_net[_rcu] (CVE-2025-40074 bsc#1252794). - commit 84f2b83 - net: dst: add four helpers to annotate data-races around dst->dev (CVE-2025-40074 bsc#1252794). - commit 641c10d - net: dst: annotate data-races around dst->output (CVE-2025-40074 bsc#1252794). - commit 0a67853 - net: dst: annotate data-races around dst->input (CVE-2025-40074 bsc#1252794). - commit bc1bb03 - net: dst: annotate data-races around dst->lastuse (CVE-2025-40074 bsc#1252794). - commit c73e633 - net: dst: annotate data-races around dst->expires (CVE-2025-40074 bsc#1252794). - commit 036fc25 - net: dst: annotate data-races around dst->obsolete (CVE-2025-40074 bsc#1252794). - commit e91bc82 - net: ipv4: ipmr: ipmr_queue_xmit(): Drop local variable `dev' (CVE-2025-40074 bsc#1252794). - commit b5b015d - net: gro: convert four dev_net() calls (CVE-2025-40074 bsc#1252794). - commit be8aee4 - tcp: convert to dev_net_rcu() (CVE-2025-40074 bsc#1252794). - commit 20ab1af - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes). - commit d8feafd - selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221). - commit 8ddf4e6 - rpm/kernel-obs-build.spec.in: Add xt_addrtype module for docker Needed by docker meanwhile. - commit 1cd2f7d - wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181). - commit 74b4608 - drm/amdkfd: relax checks for over allocation of save area (stable-fixes). - drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes). - net: phy: micrel: lan8814 fix reset of the QSGMII interface (git-fixes). - drm/xe: Do clean shutdown also when using flr (git-fixes). - drm/xe: Move declarations under conditional branch (stable-fixes). - wifi: mac80211: use wiphy_hrtimer_work for csa.switch_work (git-fixes). - wifi: cfg80211: add an hrtimer based delayed work item (stable-fixes). - HID: logitech-hidpp: Add HIDPP_QUIRK_RESET_HI_RES_SCROLL (stable-fixes). - HID: nintendo: Wait longer for initial probe (stable-fixes). - HID: quirks: Add ALWAYS_POLL quirk for VRS R295 steering wheel (stable-fixes). - HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). - ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes). - ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). - drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). - drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes). - drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes). - drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes). - net: phy: micrel: Fix lan8814_config_init (git-fixes). - net: phy: micrel: Replace hardcoded pages with defines (stable-fixes). - net: phy: micrel: Introduce lanphy_modify_page_reg (stable-fixes). - ktime: Add us_to_ktime() (stable-fixes). - commit bf8b937 - selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes). - commit 49e49bc ++++ weechat: - Update to 4.7.2: Fixed * api: fix file descriptor leak in hook_url when a timeout occurs or if the hook is removed during the transfer (#2284) * irc: fix colors in messages 367 (ban mask), 728 (quiet mask) and MODE (#2286) * irc: fix reset of color when multiple modes are set with command /mode ------------------------------------------------------------------ ------------------ 2025-11-24 - Nov 24 2025 ------------------- ------------------------------------------------------------------ ++++ webkit2gtk3-soup2: - Add webkit2gtk3-undefined-symbol.patch: fix a build failure. ++++ webkit2gtk3: - Add webkit2gtk3-undefined-symbol.patch: fix a build failure. ++++ webkit2gtk4: - Add webkit2gtk3-undefined-symbol.patch: fix a build failure. ++++ kernel-64kb: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-default: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-rt: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ dtb-aarch64: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ grub2-compat-ia32: - Add update-bootloader also into post and postun Requires ++++ kernel-source: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-docs: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-kvmsmall: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-obs-build: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-obs-qa: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-syms: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ kernel-zfcpdump: - kernel-binary: Only skip brp-strip when debuginfo is enabled Fixes: 4fc8f912b4f2 ("kernel-binary: Do not change debuginfo config during build") - commit cd9963e - USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes). - USB: serial: option: add Quectel RG255C (stable-fixes). - commit b1c03da - octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (CVE-2025-39944 bsc#1251120) - commit d80dc54 - ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (CVE-2025-39859 bsc#1250252) - commit 6972595 - net: macb: fix unregister_netdev call order in macb_remove() (CVE-2025-39805 bsc#1249982) - commit 41ae930 - listmount: don't call path_put() under namespace semaphore (CVE-2025-40203 bsc#1253457) - commit 47742e9 - Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a proper watchdog interface and has many code issues. It only handles obscure and obsolete hardware. Stop building and supporting this driver (jsc#PED-14062). - commit 97992f4 - idpf: fix possible vport_config NULL pointer deref in remove (git-fixes). - ice: ice_adapter: release xa entry on adapter allocation failure (CVE-2025-40185 bsc#1253394). - Revert "net/mlx5e: Update and set Xon/Xoff upon MTU set" (git-fixes). - net: stmmac: est: Drop frames causing HLBS error (git-fixes). - net/mlx5e: Don't query FEC statistics when FEC is disabled (git-fixes). - net: intel: fm10k: Fix parameter idx set but not used (git-fixes). - net: ethernet: microchip: sparx5: make it selectable for ARCH_LAN969X (git-fixes). - eth: 8139too: Make 8139TOO_PIO depend on !NO_IOPORT_MAP (git-fixes). - net: dsa: felix: support phy-mode = "10g-qxgmii" (git-fixes). - idpf: do not linearize big TSO packets (git-fixes). - bnxt_en: Add Hyper-V VF ID (git-fixes). - net: stmmac: Correctly handle Rx checksum offload errors (git-fixes). - Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set" (git-fixes). - net: sfp: add quirk for FLYPRO copper SFP+ module (git-fixes). - commit a9efe5e - net/ip6_tunnel: Prevent perpetual tunnel growth (CVE-2025-40173 bsc#1253421). - commit aef1404 - net/smc: Remove validation of reserved bits in CLC Decline (bsc#1252357). - commit e959d95 - kernel-binary: Support building gendwarfksyms on SLE/Leap 15 - commit 940a186 - btrfs: do not clear read-only when adding sprout device (bsc#1253238). - commit 33d1fad ++++ suse-migration-services: - Add DropComponents class Implement DropComponents class to allow for removal of packages, files and directories. Every service class that has the need to perform this task needs to inherit from DropComponents. Along with the new class also all service units are turned into classes for consistency and to allow the inheritance model for eventually further extensions to the service units. This is related to Issue #421 - Fixed spec file suse-migration-container-pam-config.service was not installed ------------------------------------------------------------------ ------------------ 2025-11-23 - Nov 23 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Remove unused BuildRequires: update-desktop-files. ++++ chromium: - Remove unused BuildRequires: update-desktop-files. ++++ chromium: - Remove unused BuildRequires: update-desktop-files. ++++ chromium: - Remove unused BuildRequires: update-desktop-files. ++++ chromium: - Remove unused BuildRequires: update-desktop-files. ++++ kernel-64kb: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-default: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-rt: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ dtb-aarch64: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ fontforge: - Add da98987f.patch: Backport da98987f from upstream, fix memleak in function DlgCreate8. (CVE-2025-50949, bsc#1252652) ++++ kernel-source: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-docs: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-kvmsmall: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-obs-build: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-obs-qa: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-syms: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ++++ kernel-zfcpdump: - Input: imx_sc_key - fix memory corruption on unload (git-fixes). - Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). - commit ca4fb1e - scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (CVE-2025-40001 bsc#1252303). - commit 73f1aad ------------------------------------------------------------------ ------------------ 2025-11-22 - Nov 22 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-default: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-rt: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ dtb-aarch64: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-source: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-docs: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-kvmsmall: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-obs-build: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-obs-qa: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-syms: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ kernel-zfcpdump: - ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes). - pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes). - pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). - pinctrl: cirrus: Fix fwnode leak in cs42l43_pin_probe() (git-fixes). - pinctrl: realtek: Select REGMAP_MMIO for RTD driver (git-fixes). - drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes). - nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). - Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). - drm/tegra: Add call to put_pid() (git-fixes). - drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). - commit 30ae56a ++++ rnp: - update to 0.18.1: * CVE-2025-13470: PKESK (public-key encrypted) session keys were generated as all-zero, allowing trivial decryption of messages encrypted with public keys only (boo#1253957, CVE-2025-13402) ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ openQA: - Update to version 5.1763743683.1da97aa2: * Optimize Job Group dropdown database query * Split dependency handling out of create_from_settings * Give jobs with high MAX_JOB_TIME a priority malus * Make the number of builds per group on the front page configurable * docs: Feature auto-generated deepwiki less prominently * apparmor: Additional perms for tests in osado to run ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ os-autoinst: - Update to version 5.1763561851.03e049d: * Avoid `Can't exec "ffmpeg"` if ffmpeg isn't present * Fix syntax errors in nft due to multiple interfaces in $ethernet * README: Feature auto-generated deepwiki less prominently * Install NetworkManager-ovs in os-autoinst-setup-multi-machine * Add disconnect_usb (qemu only, for now) ++++ weechat: - Remove unused BuildRequires: update-desktop-files. ------------------------------------------------------------------ ------------------ 2025-11-21 - Nov 21 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-default: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-rt: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ dtb-aarch64: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ icingaweb2: - Update to 2.12.6 - Search box shows many magnifying glasses for some community themes #5395 - Authentication hooks are not called with external backends #5415 - Improve Minimal layout #5386 ++++ kernel-source: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-docs: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-kvmsmall: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-obs-build: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-obs-qa: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-syms: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ kernel-zfcpdump: - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CVE-2025-40176 bsc#1253425). - commit c156a2c - platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). - platform/x86: msi-wmi-platform: Fix typo in WMI GUID (git-fixes). - platform/x86: msi-wmi-platform: Only load on MSI devices (git-fixes). - commit a00f5ce ++++ libmicrohttpd: - Fix for the following bugs: * bsc#1253177 CVE-2025-59777 * bsc#1253178 CVE-2025-62689 - Add patch: * CVE-2025-59777.patch * this same patch fixes both CVEs * git commit ff13abc1c1d7d2b30d69d5c0bd4a237e1801c50b ++++ python-azure-agent: - Fix dependencies for SLE 16 (bsc#1254129) + procps instead of sysvinit-tools ++++ suse-migration-services: - Create systemd.link files for biosdevname (bsc#1253963) - Create lib file for common network-prereq tasks ------------------------------------------------------------------ ------------------ 2025-11-20 - Nov 20 2025 ------------------- ------------------------------------------------------------------ ++++ webkit2gtk3-soup2: - Update to version 2.50.2 (bsc#1254165 bsc#1254166 bsc#1254167 bsc#1254168 bsc#1254169 bsc#1254170 bsc#1254171 bsc#1254172 bsc#1254174 bsc#1254176 bsc#1254177 bsc#1254179 bsc#1254208): + Prevent unsafe URI schemes from participating in media playback. + Make jsc_value_array_buffer_get_data() function introspectable. + Fix logging in to Google accounts that have a WebAuthn second factor configured. + Fix loading webkit://gpu when there are no threads configured for GPU rendering. + Fix rendering gradiants that use the CSS hue interpolation method. + Fix pasting image data from the clipboard. + Fix font-family selection when the font name contains spaces. + Fix the build with standard C libraries that lack execinfo.h, like Musl or uClibc. + Fix capturing canvas snapshots in the Web Inspector. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43392, CVE-2025-43425, CVE-2025-43427, CVE-2025-43429, CVE-2025-43430, CVE-2025-43431, CVE-2025-43432, CVE-2025-43434, CVE-2025-43440, CVE-2025-43443, CVE-2025-13502. ++++ webkit2gtk3: - Update to version 2.50.2 (bsc#1254165 bsc#1254166 bsc#1254167 bsc#1254168 bsc#1254169 bsc#1254170 bsc#1254171 bsc#1254172 bsc#1254174 bsc#1254176 bsc#1254177 bsc#1254179 bsc#1254208): + Prevent unsafe URI schemes from participating in media playback. + Make jsc_value_array_buffer_get_data() function introspectable. + Fix logging in to Google accounts that have a WebAuthn second factor configured. + Fix loading webkit://gpu when there are no threads configured for GPU rendering. + Fix rendering gradiants that use the CSS hue interpolation method. + Fix pasting image data from the clipboard. + Fix font-family selection when the font name contains spaces. + Fix the build with standard C libraries that lack execinfo.h, like Musl or uClibc. + Fix capturing canvas snapshots in the Web Inspector. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43392, CVE-2025-43425, CVE-2025-43427, CVE-2025-43429, CVE-2025-43430, CVE-2025-43431, CVE-2025-43432, CVE-2025-43434, CVE-2025-43440, CVE-2025-43443, CVE-2025-13502. ++++ webkit2gtk4: - Update to version 2.50.2 (bsc#1254165 bsc#1254166 bsc#1254167 bsc#1254168 bsc#1254169 bsc#1254170 bsc#1254171 bsc#1254172 bsc#1254174 bsc#1254176 bsc#1254177 bsc#1254179 bsc#1254208): + Prevent unsafe URI schemes from participating in media playback. + Make jsc_value_array_buffer_get_data() function introspectable. + Fix logging in to Google accounts that have a WebAuthn second factor configured. + Fix loading webkit://gpu when there are no threads configured for GPU rendering. + Fix rendering gradiants that use the CSS hue interpolation method. + Fix pasting image data from the clipboard. + Fix font-family selection when the font name contains spaces. + Fix the build with standard C libraries that lack execinfo.h, like Musl or uClibc. + Fix capturing canvas snapshots in the Web Inspector. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43392, CVE-2025-43425, CVE-2025-43427, CVE-2025-43429, CVE-2025-43430, CVE-2025-43431, CVE-2025-43432, CVE-2025-43434, CVE-2025-43440, CVE-2025-43443, CVE-2025-13502. ++++ apache2-mod_wsgi: - Don't enable the module by default. Instead, include instructions in the description, consistent with other comparable modules, such as apache2-mod_fcgid, apache2-mod_jk and apache2-mod_mono. If a reverse dependency of this module requires it, that package may execute `a2enmod wsgi`. ++++ kernel-64kb: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-default: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-rt: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ dtb-aarch64: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ helmfile: - Update to version 1.2.0: * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.15 to 1.31.16 by @dependabot[bot] in #2242 * build(deps): bump github.com/hashicorp/go-getter from 1.8.2 to 1.8.3 by @dependabot[bot] in #2241 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.89.0 to 1.89.1 by @dependabot[bot] in #2240 * build(deps): bump github.com/containerd/containerd from 1.7.28 to 1.7.29 by @dependabot[bot] in #2249 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.89.1 to 1.90.0 by @dependabot[bot] in #2248 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.16 to 1.31.17 by @dependabot[bot] in #2245 * build(deps): bump golang.org/x/sync from 0.17.0 to 0.18.0 by @dependabot[bot] in #2251 * build(deps): bump golangci/golangci-lint-action from 8 to 9 by @dependabot[bot] in #2250 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.17 to 1.31.18 by @dependabot[bot] in #2253 * build(deps): bump golang.org/x/term from 0.36.0 to 0.37.0 by @dependabot[bot] in #2256 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.18 to 1.31.20 by @dependabot[bot] in #2259 * perf(app): Parallelize helmfile.d rendering and eliminate chdir race conditions by @aditmeno in #2261 * build(deps): bump k8s.io/apimachinery from 0.34.1 to 0.34.2 by @dependabot[bot] in #2264 * Issue-1883 fix by @zhaque44 in #2058 * feat: add Helm 4 support while maintaining Helm 3 compatibility by @aditmeno in #2262 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.90.0 to 1.90.2 by @dependabot[bot] in #2258 - Bump golang(API) to >= 1.25 ++++ kernel-source: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-docs: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-kvmsmall: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-obs-build: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-obs-qa: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-syms: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ kernel-zfcpdump: - vfs: Don't leak disconnected dentries on umount (CVE-2025-40105 bsc#1252928). - commit 9ec7356 - tee: fix register_shm_helper() (CVE-2025-40031 bsc#1252779). - commit b6c7c1f - HID: uclogic: Fix potential memory leak in error path (git-fixes). - HID: playstation: Fix memory leak in dualshock4_get_calibration_data() (git-fixes). - HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). - HID: amd_sfh: Stop sensor before starting (git-fixes). - HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). - commit 1cc7637 ++++ mdadm: - Update to version 4.4+30.g9a59bf51: * mdcheck: work around bash 5.3 bug (bsc#1254087) ++++ python-dns-lexicon: - Update to 3.23.2 * Support subdomains in `dynu` providers (#34) - from version 3.23.1 * Fix pagination in `scaleway` provider (#64) * Fix tests in `godaddy` provider - from version 3.23.0 * Add `desec` provider (#55) * Replace the old `linode` provider with `linode4`. `linode4` provider name is still usable for retro-compatibility purpose. - from version 3.22.0 * Add support of Python 3.14 * Add relevant URLs in the pyproject.toml for publication in PyPI * Make domain comparison case insensitive in DYNU provider to cope with zones with uppercase characters * Properly close sockets during integration tests * Drop support of Python 3.9 - Update BuildRequires from pyproject.toml ++++ python-softlayer: - Skip some tests broken by Click 8.3. - Clean up {Build,}Requires. ------------------------------------------------------------------ ------------------ 2025-11-19 - Nov 19 2025 ------------------- ------------------------------------------------------------------ ++++ aws-cli-cmd: - Update postun scriplet (bsc#1253743) - Do not run the postun scriptlet on upgrade as it will remove the just created command. ++++ az-cli-cmd: - Update postun scriplet (bsc#1253743) - Do not run the postun scriptlet on upgrade as it will remove the just created command. ++++ kernel-64kb: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-default: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-rt: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ curl: - Security fix: [bsc#1253757, CVE-2025-11563] * curl: wcurl path traversal with percent-encoded slashes * Add curl-CVE-2025-11563.patch ++++ curl: - Security fix: [bsc#1253757, CVE-2025-11563] * curl: wcurl path traversal with percent-encoded slashes * Add curl-CVE-2025-11563.patch ++++ dtb-aarch64: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ ibus: - Upstream update to 1.5.33 * Fix reset signal w/ GTK_IM_MODULE=ibus in Wayland * Provide preedit semantic APIs * Do not load en-US compose table by default * IBus 1.5.33 will insert "include %L" in your compose file automatically generated by old IBus versions * Implement IBusMessage * Improve BEPO compose sequence visuals * Update simple.xml with xkeyboard-config 2.45 * Update ibusunicodegen.h with Unicode 17.0.0 * Bug fixes for Wayland input-method * Fix PageUp/PageDown buttons with hiding candidate popup * Drop fix-candidate-does-not-hide-automatically.patch * Fix leaks and buffer overflows - Drop patches for unmaintained distributions * ibus-fix-Signal-does-not-exist.patch * ibus-socket-name-compatibility.patch ++++ ibus_gtk4: - Upstream update to 1.5.33 * Fix reset signal w/ GTK_IM_MODULE=ibus in Wayland * Provide preedit semantic APIs * Do not load en-US compose table by default * IBus 1.5.33 will insert "include %L" in your compose file automatically generated by old IBus versions * Implement IBusMessage * Improve BEPO compose sequence visuals * Update simple.xml with xkeyboard-config 2.45 * Update ibusunicodegen.h with Unicode 17.0.0 * Bug fixes for Wayland input-method * Fix PageUp/PageDown buttons with hiding candidate popup * Drop fix-candidate-does-not-hide-automatically.patch * Fix leaks and buffer overflows - Drop patches for unmaintained distributions * ibus-fix-Signal-does-not-exist.patch * ibus-socket-name-compatibility.patch ++++ kernel-source: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-docs: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-kvmsmall: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-obs-build: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-obs-qa: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-syms: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ kernel-zfcpdump: - tracing: dynevent: Add a missing lockdown check on dynevent (CVE-2025-40021 bsc#1252681). - commit fb8bc58 - Update patches.suse/netfilter-nft_objref-validate-objref-and-objrefmap-e.patch (bsc#1250237 CVE-2025-40206). Updated mainline and CVE reference and insert the series. - commit eb9ca6a - KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes). - commit b9e89cd - KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). - commit b29274c - KVM: SVM: Initialize per-CPU svm_data at the end of hardware setup (git-fixes). - commit bf2f0c2 - KVM: x86: Don't treat ENTER and LEAVE as branches, because they aren't (git-fixes). - commit b77653d - KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). - commit 16eb189 - KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). - commit 1c49256 - KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes). - commit cd171db - KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). - commit 5727f0b - KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes). - commit ee1a2d6 - KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes). - commit d879306 - KVM: VMX: Extract checking of guest's DEBUGCTL into helper (git-fixes). - commit a2f59ae - KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes). - commit 2968fd0 - KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes). - commit 39255f9 - s390/pci: Use pci_uevent_ers() in PCI recovery (git-fixes). - commit 0abe806 - bpf: Reject negative offsets for ALU ops (CVE-2025-40169 bsc#1253416). - commit c692c6c ++++ python313-core: - Add pass-test_write_read_limited_history.patch: Fix readline history truncation when length is reduced The `readline.set_history_length()` function did not previously truncate the in-memory history when the new length was set to a value smaller than the current number of history items. This could lead to unexpected behavior where `get_history_length()` would still report the old length and writing the history to a file would write more entries than the new limit. This patch modifies `set_history_length()` to explicitly remove the oldest history entries using `remove_history()` when the length is decreased, ensuring the in-memory history is correctly truncated to the new limit. This brings the function's behavior in line with expectations and fixes failures in `test_write_read_limited_history`. ++++ python313-nogil-nogil-core: - Add pass-test_write_read_limited_history.patch: Fix readline history truncation when length is reduced The `readline.set_history_length()` function did not previously truncate the in-memory history when the new length was set to a value smaller than the current number of history items. This could lead to unexpected behavior where `get_history_length()` would still report the old length and writing the history to a file would write more entries than the new limit. This patch modifies `set_history_length()` to explicitly remove the oldest history entries using `remove_history()` when the length is decreased, ensuring the in-memory history is correctly truncated to the new limit. This brings the function's behavior in line with expectations and fixes failures in `test_write_read_limited_history`. ++++ libvirt: - CVE-2025-13193: qemu: Set umask for 'qemu-img' when creating external inactive snapshots bsc#1253703 ++++ python313: - Add pass-test_write_read_limited_history.patch: Fix readline history truncation when length is reduced The `readline.set_history_length()` function did not previously truncate the in-memory history when the new length was set to a value smaller than the current number of history items. This could lead to unexpected behavior where `get_history_length()` would still report the old length and writing the history to a file would write more entries than the new limit. This patch modifies `set_history_length()` to explicitly remove the oldest history entries using `remove_history()` when the length is decreased, ensuring the in-memory history is correctly truncated to the new limit. This brings the function's behavior in line with expectations and fixes failures in `test_write_read_limited_history`. ++++ python-cbor2: - Add CVE-2025-64076.patch from upstream. Fix: bug in decode_definite_long_string() that causes incorrect chunk length calculation (bsc#1253746, CVE-2025-64076, gh#agronholm/cbor2#265) ++++ python313-documentation: - Add pass-test_write_read_limited_history.patch: Fix readline history truncation when length is reduced The `readline.set_history_length()` function did not previously truncate the in-memory history when the new length was set to a value smaller than the current number of history items. This could lead to unexpected behavior where `get_history_length()` would still report the old length and writing the history to a file would write more entries than the new limit. This patch modifies `set_history_length()` to explicitly remove the oldest history entries using `remove_history()` when the length is decreased, ensuring the in-memory history is correctly truncated to the new limit. This brings the function's behavior in line with expectations and fixes failures in `test_write_read_limited_history`. ++++ python313-nogil: - Add pass-test_write_read_limited_history.patch: Fix readline history truncation when length is reduced The `readline.set_history_length()` function did not previously truncate the in-memory history when the new length was set to a value smaller than the current number of history items. This could lead to unexpected behavior where `get_history_length()` would still report the old length and writing the history to a file would write more entries than the new limit. This patch modifies `set_history_length()` to explicitly remove the oldest history entries using `remove_history()` when the length is decreased, ensuring the in-memory history is correctly truncated to the new limit. This brings the function's behavior in line with expectations and fixes failures in `test_write_read_limited_history`. ++++ suse-migration-services: - update PAM configurations to use pam_unix.so SLE16 no longer provides compat links for pam_unix_*.so. Fix the configuration for tools that are still using those compat links so they don't break after migration. Ref PED-13640 ------------------------------------------------------------------ ------------------ 2025-11-18 - Nov 18 2025 ------------------- ------------------------------------------------------------------ ++++ SAPHanaSR-angi: - Version bump to 1.2.12 * saphana_monitor needs to send OCF_NOT_RUNNING for PROBES, if the workload is down AND clone-flag is "DEMOTED". This allows crm_mon to show the proper (stopped) status. The monitor still needs to return OCF_SUCESS, if the workload is down AND the clone-flag is "DEMOTED" to tell the cluster to stop (formally) these clone instances. (bsc#1245661) * Enhance fencing behavior in case of FAST-STOP Trigger fencing when running into timeouts or getting lss==0 In case of Scale-Out score the nameserver slave higher than a possible secondary takeover candidate to delay the takeover till the current primary is completely down (bsc#1250160) * SAPHanaSR-showAttr - support hostnames containing dashes (bsc#1236893) * Improvements of the tools for a better support of life and post mortem analysis. * update man pages: SAPHanaSR.7 SAPHanaSR_basic_cluster.7 SAPHanaSR-ScaleOut.7 SAPHanaSR-ScaleOut_basic_cluster.7 SAPHanaSR-angi-scenarios.7 SAPHanaController-scale-up.7 SAPHanaController-scale-out.7 ocf_suse_SAPHana.7 ocf_suse_SAPHanaController.7 ocf_suse_SAPHanaTopology.7 susChkSrv.py.7 susTkOver.py.7 SAPHanaSR-upgrade-to-angi-demo.8 SAPHanaSR-alert-fencing.8 SAPHanaSR-manageProvider.8 SAPHanaSR-replay-archive.8 SAPHanaSR-showAttr.8 - Hint: Version 1.2.11 was used for a POC with some customers for some new changes. All changes of this 'internal' version are now integrated in this common released version 1.2.12 ++++ rust1.91: - Resolve bootstrap incorrectly using lld ++++ kernel-64kb: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-default: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-rt: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ drbd-utils: - [SELinux] nfs_drbd: "fence-peer helper broken, returned 0" and nfs WRITE hang when power off the secondary node (bsc#1252991) * Update and rename patch - bsc-1233273_drbd.ocf-update-for-OCF-1.1.patch + bsc-1233273-1252991_drbd.ocf-update-for-OCF-1.1.patch ++++ dtb-aarch64: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-source: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-docs: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-kvmsmall: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-obs-build: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-obs-qa: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-syms: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ kernel-zfcpdump: - kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms - commit 0d3f66b - drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes). - commit ec917da - ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes). - Refresh patches.suse/ASoC-nau8821-Add-DMI-quirk-to-bypass-jack-debounce-c.patch. - commit 26a2ff0 - Revert "ACPI: Suppress misleading SPCR console message when SPCR table is absent" (stable-fixes). - commit d03b19b - thunderbolt: Increase DPRX capabilities read timeout (git-fixes). - commit 555764d - thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold (git-fixes). - Refresh patches.suse/thermal-drivers-mediatek-lvts-Start-sensor-interrupt.patch. - commit 3c59e7d - tty: serial: ip22zilog: Use platform device for probing (stable-fixes). - tty: serial: uartlite: register uart driver in init (stable-fixes). - commit 31331ea - wifi: rtw89: avoid possible TX wait initialization race (git-fixes). - commit 1cf0319 - PM: EM: Fix late boot with holes in CPU topology (git-fixes). - PM: EM: Move CPU capacity check to em_adjust_new_capacity() (stable-fixes). - PM: EM: Slightly reduce em_check_capacity_update() overhead (stable-fixes). - PM: EM: Drop unused parameter from em_adjust_new_capacity() (stable-fixes). - commit e9cac92 - platform/x86: thinkpad_acpi: Handle KCOV __init vs inline mismatches (stable-fixes). - commit cbe0445 - mei: me: add wildcat lake P DID (stable-fixes). - pinctrl: check the return value of pinmux_ops::get_function_name() (stable-fixes). - commit 1b746a1 - media: mc: Clear minor number before put device (git-fixes). - media: verisilicon: Explicitly disable selection api ioctls for decoders (stable-fixes). - media: nxp: imx8-isi: m2m: Fix streaming cleanup on release (git-fixes). - commit c31f158 - kasan: fix GCC mem-intrinsic prefix with sw tags (git-fixes). - commit 3652fcf - ipmi: Fix handling of messages with provided receive message pointer (git-fixes). - commit a67a65e - ipmi: Rework user message limit handling (git-fixes). - Revert "ipmi: fix msg stack when IPMI is disconnected" (stable-fixes). - commit 15ee836 - Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). - HID: simplify snto32() (stable-fixes). - commit 5536114 - HID: multitouch: fix sticky fingers (git-fixes). - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (git-fixes). - commit 7b1353d - drm/xe: Do not wake device during a GT reset (git-fixes). - drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes). - drm/msm/a6xx: Fix PDC sleep sequence (git-fixes). - commit 5296d1a - drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes). - drm/xe/guc: Add more GuC load error status codes (stable-fixes). - drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes). - drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes). - commit 6c1d83f - drm/amdgpu: Check vcn sram load return value (stable-fixes). - commit 2a00bb4 - ASoC: codecs: wcd937x: make stub functions inline (git-fixes). - ASoC: codecs: wcd937x: set the comp soundwire port correctly (git-fixes). - ASoC: rsnd: adjust convert rate limitation (stable-fixes). - ASoC: rsnd: don't indicate warning on rsnd_kctrl_accept_runtime() (stable-fixes). - ASoC: rsnd: indicate unsupported clock rate (stable-fixes). - ASoC: renesas: rz-ssi: Add a check for negative sample_space (git-fixes). - ASoC: renesas: rz-ssi: Use only the proper amount of dividers (git-fixes). - ASoC: renesas: rz-ssi: Terminate all the DMA transactions (git-fixes). - commit 8a0b029 - ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup (stable-fixes). - commit 97a0d09 - ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA (stable-fixes). - commit 2423cdd - ALSA: hda/realtek: Add support for various HP Laptops using CS35L41 HDA (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 652c005 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3247 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 431b8c2 - ALSA: hda/realtek: fix micmute LEDs on HP Laptops with ALC3315 (stable-fixes). - Refresh patches.suse/ALSA-hda-Apply-volume-control-on-speaker-lineout-for.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-mute-LED-support-for-HP-Victus--ce174b4.patch. - Refresh patches.suse/ALSA-hda-realtek-Add-quirk-for-Asus-GU605C.patch. - Refresh patches.suse/ALSA-hda-realtek-Fix-built-in-mic-on-ASUS-VivoBook-X.patch. - Refresh patches.suse/ALSA-hda-realtek-Support-mute-led-function-for-HP-pl.patch. - commit 4bc4bb8 - Refresh patches.suse/sched-fair-Enable-scheduler-feature-NEXT_BUDDY.patch. patches.suse/sched-fair-Reimplement-NEXT_BUDDY-to-align-with-EEVDF-goals.patch. Replace out-of-tree patches with upstream - commit 05723b9 - mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). - mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). - mtdchar: fix integer overflow in read/write ioctls (git-fixes). - commit 9e717e0 - Update config files: enable zstd module decompression (jsc#PED-14115). Enable in-kernel decompression for modules compressed with zstd. This allows kmod to load these modules using the finit_module syscall, which provides better detection of idempotent modules compared to init_module. Additionally, it enables module loading with tools that do not natively support zstd decompression, such as busybox. - commit f0effe5 - ring-buffer: Update pages_touched to reflect persistent buffer content (git-fixes). - commit b413c4a - tracing: Have the error of __tracing_resize_ring_buffer() passed to user (git-fixes). - commit 780aa09 - ring-buffer: Unlock resize on mmap error (git-fixes). - commit cfd3a65 - tracing: gfp: Fix the GFP enum values shown for user space tracing tools (git-fixes). - commit 825ad23 - uprobes: Fix race in uprobe_free_utask (git-fixes). - commit 8b6b5fb - usb: acpi: fix device link removal (git-fixes). - commit 1f93244 - [PATCH] usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 0d77330 ++++ sssd: - Install file in krb5.conf.d to include sssd krb5 config snippets; (bsc#1244325); - Disable Kerberos localauth an2ln plugin for AD; (CVE-2025-11561); (bsc#1251827); Add patch 0005-krb5-disable-Kerberos-localauth-an2ln-plugin-for-AD-.patch ++++ pnpm: - update to 10.22.0: * Minor Changes - Added support for trustPolicyExclude #10164. You can now list one or more specific packages or versions that pnpm should allow to install, even if those packages don't satisfy the trust policy requirement. For example: trustPolicy: no-downgrade trustPolicyExclude: - chokidar@4.0.3 - webpack@4.47.0 || 5.102.1 - Allow to override the engines field on publish by the publishConfig.engines field. * Patch Changes - Don't crash when two processes of pnpm are hardlinking the contents of a directory to the same destination simultaneously #10179. - update to 10.21.0: * Minor Changes - Node.js Runtime Installation for Dependencies. Added support for automatic Node.js runtime installation for dependencies. pnpm will now install the Node.js version required by a dependency if that dependency declares a Node.js runtime in the "engines" field. For example: { "engines": { "runtime": { "name": "node", "version": "^24.11.0", "onFail": "download" } } } If the package with the Node.js runtime dependency is a CLI app, pnpm will bind the CLI app to the required Node.js version. This ensures that, regardless of the globally installed Node.js instance, the CLI will use the compatible version of Node.js. If the package has a postinstall script, that script will be executed using the specified Node.js version. Related PR: #10141 - Added a new setting: trustPolicy. When set to no-downgrade, pnpm will fail installation if a package’s trust level has decreased compared to previous releases — for example, if it was previously published by a trusted publisher but now only has provenance or no trust evidence. This helps prevent installing potentially compromised versions of a package. Related issue: #8889. - Added support for pnpm config get globalconfig to retrieve the global config file path #9977. * Patch Changes - When a user runs pnpm update on a dependency that is not directly listed in package.json, none of the direct dependencies should be updated #10155. - Don't crash when two processes of pnpm are hardlinking the contents of a directory to the same destination simultaneously #10160. - Setting gitBranchLockfile and related settings via pnpm-workspace.yaml should work #9651. ------------------------------------------------------------------ ------------------ 2025-11-17 - Nov 17 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaThunderbird: - Add build_limit for s390x on SLE16 (bsc#1247774) * by Martin Sirringhaus ++++ MozillaThunderbird: - Add build_limit for s390x on SLE16 (bsc#1247774) * by Martin Sirringhaus ++++ chromium: - Chromium 142.0.7444.175 (boo#1253698): * CVE-2025-13223: Type Confusion in V8 * CVE-2025-13224: Type Confusion in V8 ++++ chromium: - Chromium 142.0.7444.175 (boo#1253698): * CVE-2025-13223: Type Confusion in V8 * CVE-2025-13224: Type Confusion in V8 ++++ chromium: - Chromium 142.0.7444.175 (boo#1253698): * CVE-2025-13223: Type Confusion in V8 * CVE-2025-13224: Type Confusion in V8 ++++ chromium: - Chromium 142.0.7444.175 (boo#1253698): * CVE-2025-13223: Type Confusion in V8 * CVE-2025-13224: Type Confusion in V8 ++++ chromium: - Chromium 142.0.7444.175 (boo#1253698): * CVE-2025-13223: Type Confusion in V8 * CVE-2025-13224: Type Confusion in V8 ++++ kernel-64kb: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-default: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-rt: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ dtb-aarch64: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-source: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-docs: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-kvmsmall: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-obs-build: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-obs-qa: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-syms: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ++++ kernel-zfcpdump: - cpuidle: Fail cpuidle device registration if there is one already (stable-fixes). - commit 774b422 - cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (stable-fixes). - commit 3040a19 - cpufreq: ti: Add support for AM62D2 (stable-fixes). - commit aae5dea - net/sched: sch_qfq: Fix null-deref in agg_dequeue (CVE-2025-40083 bsc#1252912). - commit db525fd - RDMA/irdma: Remove unused struct irdma_cq fields (git-fixes) Refresh: patches.suse/RDMA-irdma-Set-irdma_cq-cq_num-field-during-CQ-creat.patch - commit 2bc40c7 - usb: hub: Fix flushing of delayed work used for post resume purposes (git-fixes). - commit 568c0c7 - sched/fair: Proportional newidle balance -KABI (bsc#1248792). - commit 2a30a31 - mm/secretmem: fix use-after-free race in fault handler (git-fixes). - commit 80f400e - mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes). - commit 6277246 - mm/shmem: fix THP allocation and fallback loop (git-fixes). - commit 7df97a5 - sched/fair: Proportional newidle balance (bsc#1248792). - sched/fair: Small cleanup to update_newidle_cost() (bsc#1248792). - sched/fair: Small cleanup to sched_balance_newidle() (bsc#1248792). - sched/fair: Revert max_newidle_lb_cost bump (bsc#1248792). - commit 002bf3c - usb: acpi: fix device link removal (git-fixes). - commit 7da3956 - btrfs: fix COW handling in run_delalloc_nocow() (git-fixes). - commit 3658fcf - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime pm (git-fixes). - commit 0e7a64a - NFS: Fix LTP test failures when timestamps are delegated (git-fixes). - commit a27c9b1 - NFSv4: Fix an incorrect parameter when calling nfs4_call_sync() (git-fixes). - commit 88b6f1a - NFS: sysfs: fix leak when nfs_client kobject add fails (git-fixes). - commit ba849e7 - pnfs: Set transport security policy to RPC_XPRTSEC_NONE unless using TLS (git-fixes). - commit 8f818b2 - pnfs: Fix TLS logic in _nfs4_pnfs_v4_ds_connect() (git-fixes). - commit 3e16694 - usb: hub: fix detection of high tier USB3 devices behind suspended hubs (git-fixes). - commit 3b2ca74 - x86/amd_node: Fix AMD root device caching (git-fixes). - commit e237c08 - Input: atmel_mxt_ts - allow reset GPIO to sleep (git-fixes). - commit 5b233b4 - x86/acpi: Fix LAPIC/x2APIC parsing order (git-fixes). - commit a215e89 - x86/cpu: Add CPU model number for Bartlett Lake CPUs with Raptor Cove cores (git-fixes). - commit 20898eb - x86/dumpstack: Fix inaccurate unwinding from exception stacks due to misplaced assignment (git-fixes). - commit bc02028 - x86/e820: Fix handling of subpage regions when calculating nosave ranges in e820__register_nosave_regions() (git-fixes). - commit 3176c31 - x86/traps: Initialize DR7 by writing its architectural reset value (git-fixes). - commit bd0c543 - x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). - commit 5ec8592 - x86/bugs: Report correct retbleed mitigation status (git-fixes). - commit af3db49 - x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). - commit 25fde52 - x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). - Refresh patches.suse/x86-CPU-AMD-Add-missing-terminator-for-zen5_rdseed_m.patch. - commit 2043e4b - x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (git-fixes). - commit 58eb355 - x86/microcode/AMD: Add more known models to entry sign checking (git-fixes). - commit c6f2391 - x86/microcode: Fix Entrysign revision check for Zen1/Naples (git-fixes). - commit 0fef111 - x86/mm: Ensure clear_page() variants always have __kcfi_typeid_ symbols (git-fixes). - commit 8353963 - x86/vmscape: Add old Intel CPUs to affected list (git-fixes). - commit ab22902 - bpf: Check the helper function is valid in get_helper_proto (CVE-2025-39990 bsc#1252054). - commit 84dd981 - xsk: Harden userspace-supplied xdp_desc validation (CVE-2025-40159 bsc#1253403). - commit bdd6de1 ------------------------------------------------------------------ ------------------ 2025-11-15 - Nov 15 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-default: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-rt: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ dtb-aarch64: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-source: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-docs: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-kvmsmall: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-obs-build: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-obs-qa: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-syms: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ kernel-zfcpdump: - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes). - drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes). - mmc: dw_mmc-rockchip: Fix wrong internal phase calculate (git-fixes). - mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). - acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes). - acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes). - spi: Try to get ACPI GPIO IRQ earlier (git-fixes). - regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). - ASoC: tas2781: fix getting the wrong device number (git-fixes). - ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). - ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). - ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). - crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes). - commit f615b8d ++++ libvirt: - spec: Adjust dbus dependency bsc#1253642 - CVE-2025-12748: Check ACLs before parsing the whole domain XML bsc#1253278 ++++ maven-jar-plugin: - Update to upstream version 3.5.0 * New features and improvements + Add new "attach" configuration parameter (3.x port of #482) + Add Java-Version to MANIFEST.MF * Bug Fixes + Fix detecting java version for toolchains and JDK 1.8 + Ignore stderr when parsing javac version from toolchain * Maintenance + Update site descriptor to 2.0.0 + chore: remove junit3 references + Migrate component injection to JSR-330 + Add PR Automation to 3.x + Improve release-drafter configuration + Fix for Maven 4.0.0-rc-3 + MNGSITE-529: Rename "Goals" to "Plugin Documentation" * Build + Bump m-invoker-p to 3.9.1 for Java 25 * Dependency updates + Bump commons-io:commons-io from 2.16.1 to 2.21.0 + Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.4 + Use maven-plugin-testing-harness version 3.4.0 + Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2 + Bump org.apache.maven.plugins:maven-plugins from 42 to 45 + Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.4 + Bump mavenVersion from 3.6.3 to 3.9.11 + Bump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0 - Removed patch: * 01-allow-replacing-artifacts.patch + rendered superfluous by the "attach" configuration parameter ++++ maven-jar-plugin-bootstrap: - Update to upstream version 3.5.0 * New features and improvements + Add new "attach" configuration parameter (3.x port of #482) + Add Java-Version to MANIFEST.MF * Bug Fixes + Fix detecting java version for toolchains and JDK 1.8 + Ignore stderr when parsing javac version from toolchain * Maintenance + Update site descriptor to 2.0.0 + chore: remove junit3 references + Migrate component injection to JSR-330 + Add PR Automation to 3.x + Improve release-drafter configuration + Fix for Maven 4.0.0-rc-3 + MNGSITE-529: Rename "Goals" to "Plugin Documentation" * Build + Bump m-invoker-p to 3.9.1 for Java 25 * Dependency updates + Bump commons-io:commons-io from 2.16.1 to 2.21.0 + Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.4 + Use maven-plugin-testing-harness version 3.4.0 + Bump org.apache.maven.plugin-tools:maven-plugin-annotations from 3.15.1 to 3.15.2 + Bump org.apache.maven.plugins:maven-plugins from 42 to 45 + Bump org.apache.maven:maven-archiver from 3.6.2 to 3.6.4 + Bump mavenVersion from 3.6.3 to 3.9.11 + Bump org.apache.maven.shared:file-management from 3.1.0 to 3.2.0 - Removed patch: * 01-allow-replacing-artifacts.patch + rendered superfluous by the "attach" configuration parameter ------------------------------------------------------------------ ------------------ 2025-11-14 - Nov 14 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-default: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-rt: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ drbd-utils: - Allow domtrans from kernel_t to drbd_t (bsc#1252991) * add patch - 1252991-selinux-domtrans-from-kernel.patch ++++ dtb-aarch64: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-source: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-docs: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-kvmsmall: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-obs-build: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-obs-qa: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-syms: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ kernel-zfcpdump: - kernel-binary: Do not change debuginfo config during build Historically when debuginfo build was disabled in OBS kernel was configured to not generate the debuginfo at all saving space during build and making the build faster. More and more kernel features depend on debuginfo, and disabling it changes the kernel significantly disabling functionality that is otherwise available and causing ABI breakage. Recently genksyms was rewritten as gendwarfksyms to support more features but requires debuginfo to operate. With that kernel builds without deuginfo are not very useful anymore. Even if rpm eventually trashes the debuginfo it needs to be always generated. - commit 4fc8f91 - bpf/selftests: Fix test_tcpnotify_user (bsc#1253635). - commit 9374c78 - drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes). - commit 5c1955e - PM: hibernate: Use atomic64_t for compressed_size variable (git-fixes). - PM: hibernate: Emit an error when image writing fails (git-fixes). - wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes). - wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). - wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes). - wifi: mac80211: reject address change while connecting (git-fixes). - strparser: Fix signed/unsigned mismatch bug (git-fixes). - tools: ynl: fix string attribute length to include null terminator (git-fixes). - wifi: mac80211: fix key tailroom accounting leak (git-fixes). - wifi: ath11k: avoid bit operation on key flags (git-fixes). - USB: serial: option: add UNISOC UIS7720 (stable-fixes). - usb/core/quirks: Add Huawei ME906S to wakeup quirk (stable-fixes). - usb: raw-gadget: do not limit transfer length (git-fixes). - usb: xhci-pci: Fix USB2-only root hub registration (git-fixes). - rtc: pcf2127: fix watchdog interrupt mask on pcf2131 (stable-fixes). - rtc: pcf2127: clear minute/second interrupt (stable-fixes). - tools bitmap: Add missing asm-generic/bitsperlong.h include (stable-fixes). - tools: lib: thermal: don't preserve owner in install (stable-fixes). - tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). - watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes). - PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). - phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). - phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). - phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). - thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). - usb: xhci-pci: add support for hosts with zero USB3 ports (stable-fixes). - usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes). - usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes). - usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes). - usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). - usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). - usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). - tty/vt: Add missing return value for VT_RESIZE in vt_ioctl() (stable-fixes). - tty: serial: Modify the use of dev_err_probe() (stable-fixes). - platform/x86/intel-uncore-freq: Fix warning in partitioned system (stable-fixes). - wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). - wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). - wifi: rtw89: renew a completion for each H2C command waiting C2H event (stable-fixes). - wifi: rtw89: obtain RX path from ppdu status IE00 (stable-fixes). - wifi: rtw89: fix BSSID comparison for non-transmitted BSSID (stable-fixes). - wifi: rtw89: wow: remove notify during WoWLAN net-detect (stable-fixes). - wifi: rtw89: print just once for unknown C2H events (stable-fixes). - wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). - wifi: mac80211: Track NAN interface start/stop (stable-fixes). - wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes). - wifi: mt76: mt76_eeprom_override to int (stable-fixes). - wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). - wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). - r8169: set EEE speed down ratio to 1 (stable-fixes). - wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes). - wifi: mac80211: Fix HE capabilities element check (stable-fixes). - wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes). - smsc911x: add second read of EEPROM mac when possible corruption seen (stable-fixes). - soc: ti: pruss: don't use %pK through printk (stable-fixes). - soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). - soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). - soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). - thermal: intel: selftests: workload_hint: Mask unsupported types (stable-fixes). - thermal: gov_step_wise: Allow cooling level to be reduced earlier (stable-fixes). - tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes). - tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes). - tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). - tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). - tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes). - pinctrl: keembay: release allocated memory in detach path (stable-fixes). - pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes). - power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). - power: supply: sbs-charger: Support multiple devices (stable-fixes). - power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). - video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes). - spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). - spi: loopback-test: Don't use %pK through printk (stable-fixes). - pwm: pca9685: Use bulk write to atomicially update registers (stable-fixes). - wifi: mac80211: don't mark keys for inactive links as uploaded (stable-fixes). - wifi: ath11k: add support for MU EDCA (stable-fixes). - commit 0ec6ab7 - net: wwan: t7xx: add support for HP DRMR-H01 (stable-fixes). - PCI: imx6: Enable the Vaux supply if available (stable-fixes). - PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes). - PCI: endpoint: pci-epf-test: Limit PCIe BAR size for fixed BARs (stable-fixes). - PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). - PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). - PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). - PCI/ERR: Update device error_state already after reset (stable-fixes). - net: phy: clear link parameters on admin link down (stable-fixes). - net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). - net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes). - mfd: intel-lpss: Add Intel Wildcat Lake LPSS PCI IDs (stable-fixes). - mfd: core: Increment of_node's refcount before linking it to the platform device (stable-fixes). - mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes). - mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes). - mfd: kempld: Switch back to earlier ->init() behavior (stable-fixes). - mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes). - mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). - mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). - mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). - commit a9ec390 - kunit: test_dev_action: Correctly cast 'priv' pointer to long* (git-fixes). - ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). - iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes). - iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). - media: redrat3: use int type to store negative error codes (stable-fixes). - media: ov08x40: Fix the horizontal flip control (stable-fixes). - media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). - media: adv7180: Only validate format in querystd (stable-fixes). - media: adv7180: Do not write format to device in set_fmt (stable-fixes). - media: adv7180: Add missing lock in suspend callback (stable-fixes). - media: pci: mgb4: Fix timings comparison in VIDIOC_S_DV_TIMINGS (stable-fixes). - media: fix uninitialized symbol warnings (stable-fixes). - media: ipu6: isys: Set embedded data type correctly for metadata formats (stable-fixes). - media: imon: make send_packet() more robust (stable-fixes). - media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). - media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). - i3c: mipi-i3c-hci-pci: Add support for Intel Wildcat Lake-U I3C (stable-fixes). - memstick: Add timeout to prevent indefinite waiting (stable-fixes). - hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes). - commit 539916e - fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes). - fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). - fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes). - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). - extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). - extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). - HID: pidff: PERMISSIVE_CONTROL quirk autodetection (stable-fixes). - HID: pidff: Use direction fix only for conditional effects (stable-fixes). - HID: asus: add Z13 folio to generic group for multitouch to work (stable-fixes). - Fix access to video_is_primary_device() when compiled without CONFIG_VIDEO (stable-fixes). - firmware: qcom: tzmem: disable sc7180 platform (stable-fixes). - firmware: qcom: scm: preserve assign_mem() error return value (stable-fixes). - firewire: ohci: move self_id_complete tracepoint after validating register (stable-fixes). - hwmon: (dell-smm) Remove Dell Precision 490 custom config data (stable-fixes). - hwmon: sy7636a: add alias (stable-fixes). - hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes). - hwmon: (lenovo-ec-sensors) Update P8 supprt (stable-fixes). - hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). - commit 666e545 - drm/amd/display: Disable VRR on DCE 6 (stable-fixes). - commit b765989 - drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes). - drm/amd/display: Fix black screen with HDMI outputs (git-fixes). - drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes). - drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes). - drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes). - drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes). - drm/amd/display: update color on atomic commit time (stable-fixes). - drm/amd/display: Fix for test crash due to power gating (stable-fixes). - drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes). - drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). - drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes). - drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). - drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes). - drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). - drm/amd/display: Add fallback path for YCBCR422 (stable-fixes). - drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes). - drm/amd/display: fix dml ms order of operations (stable-fixes). - drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes). - drm/xe/guc: Return an error code if the GuC load fails (stable-fixes). - drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes). - drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes). - drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes). - drm/msm: make sure to not queue up recovery more than once (stable-fixes). - drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). - drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes). - drm/amd/display: Fix pbn_div Calculation Error (stable-fixes). - drm/amdgpu: don't enable SMU on cyan skillfish (stable-fixes). - commit a6576e9 - drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). - drm/amd: add more cyan skillfish PCI ids (stable-fixes). - drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). - drm: panel-backlight-quirks: Make EDID match optional (stable-fixes). - drm/panthor: check bo offset alignment in vm bind (stable-fixes). - drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes). - drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes). - drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes). - drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes). - drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). - drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). - drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes). - drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). - drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes). - drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). - drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes). - drm/amd/display: Wait until OTG enable state is cleared (stable-fixes). - drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). - drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). - drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). - drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). - drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes). - drm/amd/display: add more cyan skillfish devices (stable-fixes). - drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes). - drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes). - drm/amd/display: Move setup_stream_attribute (stable-fixes). - drm/amdgpu: add range check for RAS bad page address (stable-fixes). - drm/amd/display: ensure committing streams is seamless (stable-fixes). - drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes). - drm/bridge: display-connector: don't set OP_DETECT for DisplayPorts (stable-fixes). - commit 6369e4e - dmaengine: dw-edma: Set status for callback_result (stable-fixes). - dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). - drm/panthor: Serialize GPU cache flush operations (stable-fixes). - drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes). - drm/bridge: cdns-dsi: Don't fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes). - drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). - drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). - drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). - drm/sched: Optimise drm_sched_entity_push_job (stable-fixes). - commit 088581e - char: Use list_del_init() in misc_deregister() to reinitialize list pointer (stable-fixes). - char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). - crypto: hisilicon/qm - clear all VF configurations in the hardware (stable-fixes). - crypto: hisilicon/qm - invalidate queues in use (stable-fixes). - crypto: caam - double the entropy delay interval for retry (stable-fixes). - crypto: ccp - Fix incorrect payload size calculation in psp_poulate_hsti() (stable-fixes). - crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). - commit 88c75e8 - ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). - ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). - ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). - ACPI: CPPC: Detect preferred core availability on online CPUs (git-fixes). - Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). - Bluetooth: 6lowpan: Don't hold spin lock over sleeping functions (git-fixes). - Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes). - Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). - Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). - Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes). - Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). - ALSA: usb-audio: don't log messages meant for 1810c when initializing 1824c (git-fixes). - ACPI: fan: Use platform device for devres-related actions (git-fixes). - ACPI: fan: Use ACPI handle when retrieving _FST (stable-fixes). - ACPI: SPCR: Check for table version when using precise baudrate (git-fixes). - ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). - ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). - bus: mhi: core: Improve mhi_sync_power_up handling for SYS_ERR state (stable-fixes). - char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). - ACPI: scan: Update honor list for RPMI System MSI (stable-fixes). - Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). - Bluetooth: bcsp: receive data only if registered (stable-fixes). - Bluetooth: btusb: Add new VID/PID 13d3/3633 for MT7922 (stable-fixes). - Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). - amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). - accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). - accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). - accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). - accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). - ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes). - ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). - ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). - ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). - ASoC: SOF: ipc4-pcm: Add fixup for channels (stable-fixes). - ASoC: mediatek: Use SND_JACK_AVOUT for HDMI/DP jacks (stable-fixes). - ALSA: serial-generic: remove shared static buffer (stable-fixes). - ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). - ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). - ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes). - ACPI: video: force native for Lenovo 82K8 (stable-fixes). - ACPI: SPCR: Support Precise Baud Rate field (stable-fixes). - ACPI: resource: Skip IRQ override on ASUS Vivobook Pro N6506CU (stable-fixes). - ACPI: sysfs: Use ACPI_FREE() for freeing an ACPI object (stable-fixes). - ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids[] (stable-fixes). - ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes). - ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). - char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes). - ACPI: fan: Add fan speed reporting for fans with only _FST (stable-fixes). - commit f52da15 - erofs: avoid infinite loop due to incomplete zstd-compressed data (git-fixes). - commit 7b42d7d - exfat: validate cluster allocation bits of the allocation bitmap (git-fixes). - commit f4032b9 - exfat: limit log print for IO error (git-fixes). - commit 1405b08 - nfs4_setup_readdir(): insufficient locking for - >d_parent->d_inode dereferencing (git-fixes). - commit 589935f - NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). - commit 76c7f5a - NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). - commit cc6039d - IB/ipoib: Ignore L3 master device (git-fixes) - commit 117d08f - btrfs: ensure no dirty metadata is written back for an fs with errors (git-fix). - commit 17770b9 - io_uring/kbuf: fix signedness in this_len calculation (CVE-2025-39822 bsc#1250034). - Update patches.suse/io_uring-kbuf-always-use-READ_ONCE-to-read-ring-prov.patch - commit 40a2039 - io_uring/waitid: always prune wait queue entry in io_waitid_wait() (CVE-2025-40047 bsc#1252790). - commit 17b3d49 - io_uring/net: mark iov as dynamically allocated even for single segments (git-fixes). - commit d6cddb7 ++++ openexr: - security update - added patches fix CVE-2025-64181 [bsc#1253233], use of uninitialized memory in function generic_unpack() + openexr-CVE-2025-64181-1.patch + openexr-CVE-2025-64181-2.patch ++++ openexr: - security update - added patches fix CVE-2025-64181 [bsc#1253233], use of uninitialized memory in function generic_unpack() + openexr-CVE-2025-64181.patch fix CVE-2025-12495 [bsc#1253714], Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability + openexr-CVE-2025-12495.patch fix CVE-2025-12839 [bsc#1253715], Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability + openexr-CVE-2025-12839.patch fix CVE-2025-12840 [bsc#1253713], Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability + openexr-CVE-2025-12840.patch ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ openQA: - Update to version 5.1763153079.b36ac754: * Skip a build if there are no jobs * Remove unused variable ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ++++ os-autoinst: - Update to version 5.1763048144.30f43a0: * Configure ftables in os-autoinst-setup-multi-machine * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images * Avoid saving test results referring to non-existent screenshots ------------------------------------------------------------------ ------------------ 2025-11-13 - Nov 13 2025 ------------------- ------------------------------------------------------------------ ++++ rust1.91: - bsc#1253321 - resolve issue during linking due to missing requires - update gcc version requirements due to slfo issues ++++ kernel-64kb: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-default: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-rt: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ dtb-aarch64: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-source: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-docs: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-kvmsmall: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-obs-build: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-obs-qa: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-syms: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ kernel-zfcpdump: - io_uring/net: fix sendzc double notif flush (git-fixes). - commit 39ada15 - bpf: make sure skb->len != 0 when redirecting to a tunneling device (CVE-2022-50253 bsc#1249912) - commit f8c850b - net: xilinx: axienet: Add error handling for RX metadata pointer retrieval (CVE-2025-39897 bsc#1250746) - commit 7a69552 - net: xilinx: axienet: Fix RX skb ring management in DMAengine mode (bsc#1250746) - commit 3b07625 - net: xilinx: axienet: Fix Tx skb circular buffer occupancy check in dmaengine xmit (bsc#1250746) - commit f3dd19b - net: xilinx: axienet: Fix IRQ coalescing packet count overflow (bsc#1250746) - commit 342b7c5 - NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). - commit 9760aee - NFSD: Skip close replay processing if XDR encoding fails (git-fixes). - commit c1a2a70 - NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). - commit 402584f - nfsd: add missing FATTR4_WORD2_CLONE_BLKSIZE from supported attributes (git-fixes). - commit 5236ad9 - nfsd: fix refcount leak in nfsd_set_fh_dentry() (git-fixes). - commit 958cf9b ++++ python313-core: - Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). ++++ python313-nogil-nogil-core: - Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). ++++ nvidia-open-driver-G06-signed-cuda: - introduced extra %gfx_aarch64_version and appropriate tarball/pci_id file in the hope that build service will no longer complain - update CUDA variant to 580.105.08 ++++ nvidia-open-driver-G06-signed: - introduced extra %gfx_aarch64_version and appropriate tarball/pci_id file in the hope that build service will no longer complain - update CUDA variant to 580.105.08 ++++ product-composer: - update to version 0.6.18: - Fix filtering of not used rpms in updateinfo ++++ python-azure-agent: - Update to version 2.14.0.1 (bsc#1253001) + Drop - included upstream ~ agent-btrfs-use-f.patch included upstream ~ remove-mock.patch + FIPS 140-3 support + Block extensions disallowed by policy + Report ext policy errors in heartbeat + Implement signature validation helper functions + Prevent ssh public key override + Use proper filesystem creation flag for btrfs + Enable resource monitoring in cgroup v2 machines + Update agent cgroup cleanup + Add cgroupv2 distros to supported list + Clean old agent cgroup setup + Redact sas tokens in telemetry events and agent log + Add conf option to use hardcoded wireserver ip instead of dhcp request to discover wireserver ip + Support for python 3.12 + Update telemetry message for agent updates and send new telemetry for ext resource governance + Disable rsm downgrade + Add community support for Chainguard OS + Swap out legacycrypt for crypt-r for Python 3.13+ + Pin setuptools version + Set the agent config file path for FreeBSD + Handle errors importing crypt module - From 2.13.1.1 + Setup: Fix install_requires list syntax + Pickup latest goal state on tenant certificate rotation + Avoid infinite loop when the tenant certificate is missing + Fix unsupported syntax in py2.6 + Cgroup rewrite: uses systemctl for expressing desired configuration instead drop-in files + Remove usages of tempfile.mktemp + Use random time for attempting new Agent update + Enable logcollector in v2 machines + Clean history files + Missing firewall rules reason + Add support for nftables (+ refactoring of firewall code) + Create walinuxagent nftable atomically ++++ python313: - Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). ++++ python313-documentation: - Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). ++++ python313-nogil: - Add CVE-2025-6075-expandvars-perf-degrad.patch avoid simple quadratic complexity vulnerabilities of os.path.expandvars() (CVE-2025-6075, bsc#1252974). ++++ salt: - Require Python dependencies only for used Python version ++++ salt-test: - Require Python dependencies only for used Python version ++++ suse-migration-services: - Omit cio_ignore kernel commandline on zkvm Based on bsc#1250003 make the migration more robust, when removing `cio_ignore` from commandline only for zKVM. ++++ tcpreplay: - update to 4.5.2: * features added since 4.4.4 - fix/recalculate header checksum for ipv6-frag - IPv6 frag checksum support - AF_XDP socket support - tcpreplay -w (write into a pcap file) - tcpreplay --fixhdrlen - --include and --exclude options - SLL2 support - Haiku support * security fixes reported for 4.4.4 fixed in 4.5.2 - CVE-2023-4256 / bsc#1218249 - CVE-2023-43279 / bsc#1221324 - CVE-2024-3024 / bsc#1222131 (likely) - CVE-2024-22654 / bsc#1243845 - CVE-2025-9157 / bsc#1248322 - CVE-2025-9384 / bsc#1248595 - CVE-2025-9385 / bsc#1248596 - CVE-2025-9386 / bsc#1248597 - CVE-2025-9649 / bsc#1248964 - CVE-2025-51006 / bsc#1250356 - see https://github.com/appneta/tcpreplay/compare/v4.4.4...v4.5.2 for full changelog - security fix for CVE-2025-8746 / bsc#1247919 * tcpreplay-CVE-2025-8746.patch - drop SLE11 build workaround (not needed in Leap package) ------------------------------------------------------------------ ------------------ 2025-11-12 - Nov 12 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-default: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-rt: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ crmsh: - Update to version 5.0.0+20251110.f6e38810: * Fix: ui_configure: Check if able to set stonith-watchdog-timeout property * Fix: bootstrap: ignore ssh authentication failure to localhost when merging known_hosts (#1931) * Dev: report: Collect corosync status in crm report * Dev: xmlutil: Refactor CrmMonXmlParser.get_node_list to be an instance method * Dev: utils: Refactor validate_and_get_reachable_nodes for clearer logic * Dev: xmlutil: Use a single node_type parameter instead of two mutually exclusive parameters * Dev: utils: Skip reachable checking for pacemaker remote node * Dev: cibquery: Remove filter condition for pacemaker remote node * Dev: ui_node: Enable maintenance pacemaker remote node * Dev: ui_node: Enable standby/online pacemaker remote node * Dev: xmlutil: Drop xmlutil.listnodes function * Dev: bootstrap: Avoid circular import by refactoring FILES_TO_SYNC to use get_files_to_sync() * Dev: Get instance of CibFactory by using cibconfig.cib_factory_instance() * Dev: bootstrap: Lazily initialize tempfile to store original corosync.conf in Context to avoid circular import * Dev: Import only module instead of functions from module * Dev: Use functools.cache instead of custom memoize * Dev: sbd: Check if fence-agents-sbd is installed on join node * Dev: sbd: Check if fence-agents-sbd is installed on interactive mode * Dev: sbd: Check if fence-agents-sbd is installed for non sbd stage * Dev: sbd: Check if fence-agents-sbd is installed on all nodes * Dev: ui_sbd: Check if crashdump is configured before purging crashdump options * Fix: prun: Avoid unnecessary sudo in sftp and ssh commands (bsc#1229416) * Fix: bootstrap: Correctly identify root user with host * Fix: sh: Avoid unnecessary sudo calls in ClusterShell SSH commands (bsc#1229416) * Dev: ui_sbd: Add and check the minimum SBD timeout value * Dev: doc: Add formula for crashdump watchdog timeout in TimeoutFormulas section * Fix: migration: Populate node name during corosync configuration migration (bsc#1250585) * Fix: corosync: Fallback to CIB when node name is missing (bsc#1250585) * Fix: bootstrap: public keys from ssh-agent are not added to local authorized_keys in `crm cluster join` (#1916) * Fix: log: divided-by-zero when terminal width is 0 in progress bar * Fix: packaging: use `CURDIR` instead of `PWD` in Makefile * Fix: doc: the usage parser in help2adoc should support multiline usages * Dev: packaging: add some runtime deps to build deps to support running `crm help` during builds * Dev: packaing: add doc subdir to Makefile * Refactor: packaging: kill automake and move build steps from crmsh.spec into Makefile * Dev: packaging: remove deprecated `data_files` * Fix: sbd: Ensure proper cluster restart when adding diskless SBD (bsc#1248874) * Fix: ui_cluster: Call crm report directly for the legacy `crm cluster health` command (bsc#1230324) ++++ dtb-aarch64: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ grub2: - Fix CVE-2025-54771 (bsc#1252931) * 0001-kern-file-Call-grub_dl_unref-after-fs-fs_close.patch - Fix CVE-2025-54770 (bsc#1252930) * 0002-net-net-Unregister-net_set_vlan-command-on-unload.patch - Fix CVE-2025-61662 (bsc#1252933) * 0003-gettext-gettext-Unregister-gettext-command-on-module.patch - Fix CVE-2025-61663 (bsc#1252934) - Fix CVE-2025-61664 (bsc#1252935) * 0004-normal-main-Unregister-commands-on-module-unload.patch * 0005-tests-lib-functional_test-Unregister-commands-on-mod.patch - Fix CVE-2025-61661 (bsc#1252932) * 0006-commands-usbtest-Use-correct-string-length-field.patch * 0007-commands-usbtest-Ensure-string-length-is-sufficient-.patch - Bump upstream SBAT generation to 6 ++++ kernel-source: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-docs: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-kvmsmall: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-livepatch-SLE16-RT_Update_1: - Bump up the version number in spec file - commit f7e6e8c ++++ kernel-obs-build: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-obs-qa: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-syms: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ kernel-zfcpdump: - Rename kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch Use the name of the patch being fixed. - commit 6298d1e - btrfs: release root after error in data_reloc_print_warning_inode() (git-fixes). - commit c634c60 - btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes). - commit 9ef6fe3 - btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). - commit da7f4a2 - Refresh patches.suse/devlink-let-driver-opt-out-of-automatic-phys_port_na.patch. Use the upstream patch as is. Don't drop the hunk adding no_phys_port_name - Refresh patches.kabi/kABI-fix-for-struct-devlink_port_attrs-move-new-memb.patch No need to add a new member. Use the existing bit-field - commit 623c177 ++++ sbctl: - Upgrade the embedded golang.org/x/net to 0.46.0 * Fixes: bsc#1251399, CVE-2025-47911: various algorithms with quadratic complexity when parsing HTML documents * Fixes: bsc#1251609, CVE-2025-58190: excessive memory consumption by 'html.ParseFragment' when processing specially crafted input ++++ synce4l: - update to 1.1.1: * fix possible resource leak * fix requested thread stack size * fix scorecard.yml * initialize pin ID to -1 * fix crash in dpll_rt_recv() * create scorecard.yml * unlink smc_socket_path before binding * check smc_socket_path length * change default smc_socket_path to /run/synce4l_socket * fix more compiler warnings ------------------------------------------------------------------ ------------------ 2025-11-11 - Nov 11 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ chromium: - Chromium 142.0.7444.162 (boo#1253267): * CVE-2025-13042: Inappropriate implementation in V8 ++++ kernel-64kb: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-default: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-rt: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ dtb-aarch64: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ go-sendxmpp: - Update to 0.15.1: Added * Add XEP-0359 Origin-ID to messages (requires go-xmpp >= v0.2.18). Changed * HTTP upload: Ignore timeouts on disco IQs as some components do not reply. - Upgrades the embedded golang.org/x/net to 0.46.0 * Fixes: bsc#1251461, CVE-2025-47911: various algorithms with quadratic complexity when parsing HTML documents * Fixes: bsc#1251677, CVE-2025-58190: excessive memory consumption by 'html.ParseFragment' when processing specially crafted input ++++ kernel-source: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-docs: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-kvmsmall: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-livepatch-SLE16-RT_Update_1: - Add IBS _buildenv files + update PATCHINFO_ID after the initial submission - commit 5b119e6 ++++ kernel-obs-build: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-obs-qa: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-syms: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ kernel-zfcpdump: - Rename to patches.kabi/kabi-fix-dm-fix-dm_blk_report_zones.patch. - commit 911b752 - KVM: SEV: Validate XCR0 provided by guest in GHCB (git-fixes). - commit 7df395e - KVM: SEV: Read save fields from GHCB exactly once (git-fixes). - commit 035bf6d - KVM: SEV: Rename kvm_ghcb_get_sw_exit_code() to kvm_get_cached_sw_exit_code() (git-fixes). - commit fb01ff1 - KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes). - commit 924cf52 - KVM: TDX: Do not retry locally when the retry is caused by invalid memslot (git-fixes). - commit 1ee08a7 - KVM: x86/mmu: Return -EAGAIN if userspace deletes/moves memslot during prefault (git-fixes). - commit ebc80d5 - KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes). - commit 77fc3c5 - KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active (git-fixes). - commit b1ea66f - KVM: SVM: Pass through GHCB MSR if and only if VM is an SEV-ES guest (git-fixes). - commit a848ce9 - Refresh patches.suse/drm-amd-display-Default-IPS-to-RCG_IN_ACTIVE_IPS2_IN.patch. - Refresh patches.suse/drm-amdgpu-discovery-fix-fw-based-ip-discovery.patch. - Refresh patches.suse/drm-i915-dp-Fix-2.7-Gbps-DP_LINK_BW-value-on-g4x.patch. - Refresh patches.suse/drm-xe-Allow-dropping-kunit-dependency-as-built-in.patch. - Refresh patches.suse/drm-xe-Carve-out-wopcm-portion-from-the-stolen-memor.patch. - Refresh patches.suse/drm-xe-Ensure-fixed_slice_mode-gets-set-after-ccs_mo.patch. - Refresh patches.suse/drm-xe-Move-page-fault-init-after-topology-init.patch. - Refresh patches.suse/drm-xe-bmg-Update-Wa_22019338487.patch. - Refresh patches.suse/drm-xe-gsc-do-not-flush-the-GSC-worker-from-the-rese.patch. - Refresh patches.suse/drm-xe-guc_submit-fix-race-around-pending_disable.patch. - commit ce19d99 - io_uring/rsrc: don't rely on user vaddr alignment (git-fixes). - io_uring: make fallocate be hashed work (git-fixes). - commit 4b7f18b - io_uring: fix task leak issue in io_wq_create() (git-fixes). - io_uring/kbuf: don't truncate end buffer for multiple buffer peeks (git-fixes). - commit 6eac1e4 - io_uring/kbuf: account ring io_buffer_list memory (git-fixes). - commit f9b2eed - io_uring: account drain memory to cgroup (git-fixes). - io_uring: fix overflow resched cqe reordering (git-fixes). - commit 14d2bfa - io_uring: ensure deferred completions are flushed for multishot (git-fixes). - commit 9ec928d - io_uring/fdinfo: annotate racy sq/cq head/tail reads (git-fixes). - io_uring: fix 'sync' handling of io_fallback_tw() (git-fixes). - commit c501028 - io_uring: don't duplicate flushing in io_req_post_cqe (git-fixes). - io_uring/kbuf: reject zero sized provided buffers (git-fixes). - commit add5ee3 - io_uring/msg: initialise msg request opcode (git-fixes). - commit 78239f9 - io_uring/net: account memory for zc sendmsg (git-fixes). - commit 1a819c2 ++++ multipath-tools: - Update to version 0.11.3+184+suse.e1501732: - Fixes from upstream 0.11.3 (see also NEWS.md) (bsc#1253260) * Improved the communication with **udev** and **systemd** by triggering uevents when path devices are added to or removed from multipath maps, or when `multipathd reconfigure` is executed after changing blacklist directives in `multipath.conf`. * Failed paths should be checked every `polling_interval`. In certain cases, this wouldn't happen, because the check interval wasn't reset by multipathd. * It could happen that multipathd would accidentally release a SCSI persistent reservation held by another node. Fix it. * After manually failing some paths and then reinstating them, sometimes the reinstated paths were immediately failed again by multipathd. Fix it. * Various minor fixes reported by coverity. ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ openQA: - Update to version 5.1762879267.52145e9a: * Avoid installing unwanted package versions * Fix check in git_clone for dirty git dir * Prevent `t/24-worker-webui-connection.t` from running into timeout * Be explicit about certain aspects of archiving in the documentation * Fix sporadic failures in `t/ui/10-tests_overview.t` * Adapt os-autoinst-scripts reference after rename * Properly conclude scheduling if there are no jobs ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ os-autoinst: - Update to version 5.1762250353.5150272: * Makefile: Fix reruns on incomplete build dir generations * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library ++++ product-composer: - update to version 0.6.17: - fix multiarch media handling of updateinfo id's ++++ product-composer: - update to version 0.6.17: - fix multiarch media handling of updateinfo id's ++++ salt: - Fix TLS and x509 modules for OSes with older cryptography module - Require python-legacy-cgi only for Python > 3.12 - Builds with py >=3.13 require python-legacy-cgi - Fix Salt for Python > 3.11 (bsc#1252285) (bsc#1252244) * Use external tornado on Python > 3.11 * Make tls and x509 to use python-cryptography * Remove usage of spwd - Added: * fix-tls-and-x509-modules-for-older-cryptography-modu.patch * fix-salt-for-python-3.11.patch ++++ salt-test: - Fix TLS and x509 modules for OSes with older cryptography module - Require python-legacy-cgi only for Python > 3.12 - Builds with py >=3.13 require python-legacy-cgi - Fix Salt for Python > 3.11 (bsc#1252285) (bsc#1252244) * Use external tornado on Python > 3.11 * Make tls and x509 to use python-cryptography * Remove usage of spwd - Added: * fix-tls-and-x509-modules-for-older-cryptography-modu.patch * fix-salt-for-python-3.11.patch ++++ selinux-policy: - Update to version 20250627+git293.3432d4834: * Allow pcscd_t to search cgroup (bsc#1253098) * Fix syntax error in userdomain.if * Allow nnp_transition for OpenSMTPD (bsc#1252431) * Allow ras-mc-ctl get attributes of the kmod executable * Define file equivalency for /var/opt * Allow virtnodedev_t the perfmon capability * Allow nut_upsdrvctl_t the sys_ptrace capability * Label /usr/lib/systemd/user/graphical-session-pre.target with xdm_unit_file_t * Allow snapper sdbootutil plugin read emmc devices (bsc#1231354) * Allow pcrlock to delete pid entries * Allow systemd_pcrlock_t to manage its pid files * Mark snapper_sdbootutil_plugin_t as permissive * Drop unnamed filetrans, should be done upstream (bsc#1241964) * Label pcrlock pid file correctly (bsc#1241964) * Allow snapper sdbootutil plugin send msg to system bus (bsc#1241964) * snapper takes output from stdout/err, allow pcrlock to write * Add tpm2_getcap permissions to snapper sdbootutil (bsc#1244573) * Allow snapper sdbootutil plugin to read snapper data and conf * Allow snapper sdbootutil plugin to grep /proc/stat (bsc#1241964) * Replace snapper tmp file access for pcrlock (bsc#1241964) * Allow snapper sdbootutil read kernel module dirs (bsc#1241964) * Allow snapper sdbootutil plugin use bootctl (bsc#1241964) * Allow snapper sdbootutil plugin to list and read sysfs (bsc#1241964) * Allow snapper sdbootutil sys_admin (bsc#1241964) * Allow snapper sdbootutils plugin to findmnt (bsc#1241964) * Allow snapper sdbootutil plugin rw tpm (bsc#1233358) * Move manage dos permissions and dontaudit execmem to snapper sdbootutils plugin (bsc#1241964) * Move snapper domtrans to sdbootutil to plugin (bsc#1241964) * Revert snapper access to keys, move to sdbootutils plugin policy (bsc#1241964) * Add initial seperate policy for sdbootutil called by snapper (bsc#1233358) * Allow sort in snapper_grub_plugin_t read cpu.max (bsc#1252095) * systemd-sysctl: allow rw on binfm_misc_fs_t to set binfmt_misc status * Allow cupsd to manage cupsd_rw_etc_t lnk_files * Set temporary no-stub resolv.conf file from NetworkManager as net_conf_t * Allow spamc read aliases file * Mark configfs_t as mountpoint (bsc#1246080) * Allow systemd-machined watch cgroup files * Allow sshd-auth read generic proc files * Allow sshd-auth read and write user domain ptys * Allow logwatch read and write sendmail unix stream sockets * Allow logwatch domain transition on rpm execution * Allow thumb_t mounton its private tmpfs files * Allow thumb_t create permission in the user namespace * Allow corenet_unconfined_type name_bind to icmp_socket * Allow systemd-networkd to manage systemd_networkd_var_lib_t files * Allow sshd-session get attributes of sshd vsock socket ------------------------------------------------------------------ ------------------ 2025-11-10 - Nov 10 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaFirefox: - Firefox Extended Support Release 140.5.0 ESR * Fixed: Various security fixes. MFSA 2025-88 (bsc#1253188) * CVE-2025-13012 (bmo#1991458) Race condition in the Graphics component * CVE-2025-13016 (bmo#1992130) Incorrect boundary conditions in the JavaScript: WebAssembly component * CVE-2025-13017 (bmo#1980904) Same-origin policy bypass in the DOM: Notifications component * CVE-2025-13018 (bmo#1984940) Mitigation bypass in the DOM: Security component * CVE-2025-13019 (bmo#1988412) Same-origin policy bypass in the DOM: Workers component * CVE-2025-13013 (bmo#1991945) Mitigation bypass in the DOM: Core & HTML component * CVE-2025-13020 (bmo#1995686) Use-after-free in the WebRTC: Audio/Video component * CVE-2025-13014 (bmo#1994241) Use-after-free in the Audio/Video component * CVE-2025-13015 (bmo#1994164) Spoofing issue in Firefox ++++ MozillaFirefox: - Firefox Extended Support Release 140.5.0 ESR * Fixed: Various security fixes. MFSA 2025-88 (bsc#1253188) * CVE-2025-13012 (bmo#1991458) Race condition in the Graphics component * CVE-2025-13016 (bmo#1992130) Incorrect boundary conditions in the JavaScript: WebAssembly component * CVE-2025-13017 (bmo#1980904) Same-origin policy bypass in the DOM: Notifications component * CVE-2025-13018 (bmo#1984940) Mitigation bypass in the DOM: Security component * CVE-2025-13019 (bmo#1988412) Same-origin policy bypass in the DOM: Workers component * CVE-2025-13013 (bmo#1991945) Mitigation bypass in the DOM: Core & HTML component * CVE-2025-13020 (bmo#1995686) Use-after-free in the WebRTC: Audio/Video component * CVE-2025-13014 (bmo#1994241) Use-after-free in the Audio/Video component * CVE-2025-13015 (bmo#1994164) Spoofing issue in Firefox ++++ MozillaFirefox: - Firefox Extended Support Release 140.5.0 ESR * Fixed: Various security fixes. MFSA 2025-88 (bsc#1253188) * CVE-2025-13012 (bmo#1991458) Race condition in the Graphics component * CVE-2025-13016 (bmo#1992130) Incorrect boundary conditions in the JavaScript: WebAssembly component * CVE-2025-13017 (bmo#1980904) Same-origin policy bypass in the DOM: Notifications component * CVE-2025-13018 (bmo#1984940) Mitigation bypass in the DOM: Security component * CVE-2025-13019 (bmo#1988412) Same-origin policy bypass in the DOM: Workers component * CVE-2025-13013 (bmo#1991945) Mitigation bypass in the DOM: Core & HTML component * CVE-2025-13020 (bmo#1995686) Use-after-free in the WebRTC: Audio/Video component * CVE-2025-13014 (bmo#1994241) Use-after-free in the Audio/Video component * CVE-2025-13015 (bmo#1994164) Spoofing issue in Firefox ++++ kernel-64kb: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-default: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-rt: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ cyrus-sasl: - Python3 error log upon importing pycurl (bsc#1233529) Remove senceless log message. * add remove-senceless-log.patch ++++ cyrus-sasl-bdb: - Python3 error log upon importing pycurl (bsc#1233529) Remove senceless log message. * add remove-senceless-log.patch ++++ cyrus-sasl-saslauthd: - Python3 error log upon importing pycurl (bsc#1233529) Remove senceless log message. * add remove-senceless-log.patch ++++ cyrus-sasl-saslauthd-bdb: - Python3 error log upon importing pycurl (bsc#1233529) Remove senceless log message. * add remove-senceless-log.patch ++++ dtb-aarch64: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ hauler: - Update to version 1.3.1 (bsc#1251516, CVE-2025-47911, bsc#1251891, CVE-2025-11579, bsc#1251651, CVE-2025-58190, bsc#1248937, CVE-2025-58058): * bump github.com/containerd/containerd (#474) * another fix to tests for new tests (#472) * fixed typo in testdata (#471) * fixed/cleaned new tests (#470) * trying a new way for hauler testing (#467) * update for cosign v3 verify (#469) * added digests view to info (#465) * bump github.com/nwaples/rardecode/v2 from 2.1.1 to 2.2.0 in the go_modules group across 1 directory (#457) * update oras-go to v1.2.7 for security patches (#464) * update cosign to v3.0.2+hauler.1 (#463) * fixed homebrew directory deprecation (#462) * add registry logout command (#460) ++++ kernel-source: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-docs: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-kvmsmall: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-obs-build: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-obs-qa: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-syms: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ kernel-zfcpdump: - io_uring/net: fix accept multishot handling (git-fixes). - commit 8f56af6 - io_uring: check for iowq alloc_workqueue failure (git-fixes). - commit 1158052 - io_uring/io-wq: do not use bogus hash value (git-fixes). - io_uring/io-wq: cache work->flags in variable (git-fixes). - io_uring/io-wq: move worker lists to struct io_wq_acct (git-fixes). - io_uring/io-wq: add io_worker.acct pointer (git-fixes). - io_uring/io-wq: eliminate redundant io_work_get_acct() calls (git-fixes). - commit 53c8977 - io_uring/net: don't clear REQ_F_NEED_CLEANUP unconditionally (git-fixes). - commit 4936341 - io_uring/net: save msg_control for compat (git-fixes). - commit 09c50d3 - btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). - commit 4f3cd5c - btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). - commit 2b2b6a8 - btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes). - commit b68eaa8 - btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). - commit 36dafa0 - btrfs: simplify error handling logic for btrfs_link() (git-fixes). - commit d00c25e - btrfs: fix inode leak on failure to add link to inode (git-fixes). - commit 722b72e - btrfs: abort transaction on failure to add link to inode (git-fixes). - commit b280fd3 - btrfs: rename err to ret in btrfs_link() (git-fixes). - commit bccf104 - btrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation (git-fixes). - commit db8578f - x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). - commit 3ad5c25 - pds_core: remove write-after-free of client_id (CVE-2025-37916 bsc#1243474) - commit 5e9a8d2 - coresight: Fix incorrect handling for return value of devm_kzalloc (CVE-2025-40059 bsc#1252809) - commit 855baa1 - btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST (CVE-2025-40101 bsc#1252901) - commit 6c5e13d - bpf: Fix out-of-bounds dynptr write in bpf_crypto_crypt (CVE-2025-39917 bsc#1250723) - commit c537a65 - ocfs2: fix double free in user_cluster_connect() (CVE-2025-40055 bsc#1252821) - commit 233260e - pps: fix warning in pps_register_cdev when register device fail (CVE-2025-40070 bsc#1252836). - commit 5d93ed8 - ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (CVE-2025-40098 bsc#1252917). - commit 014dce4 - nfsd: nfserr_jukebox in nlm_fopen should lead to a retry (git-fixes). - commit 0452526 - rtc: rx8025: fix incorrect register reference (git-fixes). - drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes). - drm/mediatek: Add pm_runtime support for GCE power control (git-fixes). - drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes). - drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes). - drm/amd: Fix suspend failure with secure display TA (git-fixes). - drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). - drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). - drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes). - drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). - gpiolib: fix invalid pointer access in debugfs (git-fixes). - gpio: swnode: don't use the swnode's name as the key for GPIO lookup (git-fixes). - Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). - ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). - lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). - wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes). - net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes). - Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes). - Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). - Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). - wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes). - Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). - media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes). - media: uvcvideo: Use heuristic to find stream entity (git-fixes). - drm/amd/display: increase max link count and fix link->enc NULL pointer access (stable-fixes). - Documentation: w1: Fix SPDX comment syntax on masters and slaves toctree index (git-fixes). - commit b161491 ++++ trivy: - Update to version 0.67.2 (bsc#1250625, CVE-2025-11065, bsc#1248897, CVE-2025-58058): * release: v0.67.2 [release/v0.67] (#9639) * fix: Use `fetch-level: 1` to check out trivy-repo in the release workflow [backport: release/v0.67] (#9638) * release: v0.67.1 [release/v0.67] (#9614) * fix: restore compatibility for google.protobuf.Value [backport: release/v0.67] (#9631) * fix: using SrcVersion instead of Version for echo detector [backport: release/v0.67] (#9629) * fix: add `buildInfo` for `BlobInfo` in `rpc` package [backport: release/v0.67] (#9615) * fix(vex): don't use reused BOM [backport: release/v0.67] (#9612) * release: v0.67.0 [main] (#9432) * fix(vex): don't suppress vulns for packages with infinity loop (#9465) * fix(aws): use `BuildableClient` insead of `xhttp.Client` (#9436) * refactor(misconf): replace github.com/liamg/memoryfs with internal mapfs and testing/fstest (#9282) * docs: clarify inline ignore limitations for resource-less checks (#9537) * fix(k8s): disable parallel traversal with fs cache for k8s images (#9534) * fix(misconf): handle tofu files in module detection (#9486) * feat(seal): add seal support (#9370) * docs: fix modules path and update code example (#9539) * fix: close file descriptors and pipes on error paths (#9536) * feat: add documentation URL for database lock errors (#9531) * fix(db): Dowload database when missing but metadata still exists (#9393) * feat(cloudformation): support default values and list results in Fn::FindInMap (#9515) * fix(misconf): unmark cty values before access (#9495) * feat(cli): change --list-all-pkgs default to true (#9510) * fix(nodejs): parse workspaces as objects for package-lock.json files (#9518) * refactor(fs): use underlyingPath to determine virtual files more reliably (#9302) * refactor: remove google/wire dependency and implement manual DI (#9509) * chore(deps): bump the aws group with 6 updates (#9481) * chore(deps): bump the common group across 1 directory with 24 updates (#9507) * fix(misconf): wrap legacy ENV values in quotes to preserve spaces (#9497) * docs: move info about `detection priority` into coverage section (#9469) * feat(sbom): added support for CoreOS (#9448) * fix(misconf): strip build metadata suffixes from image history (#9498) * feat(cyclonedx): preserve SBOM structure when scanning SBOM files with vulnerability updates (#9439) * docs: Fix typo in terraform docs (#9492) * feat(redhat): add os-release detection for RHEL-based images (#9458) * ci(deps): add 3-day cooldown period for Dependabot updates (#9475) * refactor: migrate from go-json-experiment to encoding/json/v2 (#9422) * fix(vuln): compare `nuget` package names in lower case (#9456) * chore: Update release flow to include chocolatey (#9460) * docs: document eol supportability (#9434) * docs(report): add nuanses about secret/license scanner in summary table (#9442) * ci: use environment variables in GitHub Actions for improved security (#9433) * chore: bump Go to 1.24.7 (#9435) * fix(nodejs): use snapshot string as `Package.ID` for pnpm packages (#9330) * ci(helm): bump Trivy version to 0.66.0 for Trivy Helm Chart 0.18.0 (#9425) - Fix version number shown for 'trivy -v' ++++ trivy: - Update to version 0.67.2 (bsc#1250625, CVE-2025-11065, bsc#1248897, CVE-2025-58058): * release: v0.67.2 [release/v0.67] (#9639) * fix: Use `fetch-level: 1` to check out trivy-repo in the release workflow [backport: release/v0.67] (#9638) * release: v0.67.1 [release/v0.67] (#9614) * fix: restore compatibility for google.protobuf.Value [backport: release/v0.67] (#9631) * fix: using SrcVersion instead of Version for echo detector [backport: release/v0.67] (#9629) * fix: add `buildInfo` for `BlobInfo` in `rpc` package [backport: release/v0.67] (#9615) * fix(vex): don't use reused BOM [backport: release/v0.67] (#9612) * release: v0.67.0 [main] (#9432) * fix(vex): don't suppress vulns for packages with infinity loop (#9465) * fix(aws): use `BuildableClient` insead of `xhttp.Client` (#9436) * refactor(misconf): replace github.com/liamg/memoryfs with internal mapfs and testing/fstest (#9282) * docs: clarify inline ignore limitations for resource-less checks (#9537) * fix(k8s): disable parallel traversal with fs cache for k8s images (#9534) * fix(misconf): handle tofu files in module detection (#9486) * feat(seal): add seal support (#9370) * docs: fix modules path and update code example (#9539) * fix: close file descriptors and pipes on error paths (#9536) * feat: add documentation URL for database lock errors (#9531) * fix(db): Dowload database when missing but metadata still exists (#9393) * feat(cloudformation): support default values and list results in Fn::FindInMap (#9515) * fix(misconf): unmark cty values before access (#9495) * feat(cli): change --list-all-pkgs default to true (#9510) * fix(nodejs): parse workspaces as objects for package-lock.json files (#9518) * refactor(fs): use underlyingPath to determine virtual files more reliably (#9302) * refactor: remove google/wire dependency and implement manual DI (#9509) * chore(deps): bump the aws group with 6 updates (#9481) * chore(deps): bump the common group across 1 directory with 24 updates (#9507) * fix(misconf): wrap legacy ENV values in quotes to preserve spaces (#9497) * docs: move info about `detection priority` into coverage section (#9469) * feat(sbom): added support for CoreOS (#9448) * fix(misconf): strip build metadata suffixes from image history (#9498) * feat(cyclonedx): preserve SBOM structure when scanning SBOM files with vulnerability updates (#9439) * docs: Fix typo in terraform docs (#9492) * feat(redhat): add os-release detection for RHEL-based images (#9458) * ci(deps): add 3-day cooldown period for Dependabot updates (#9475) * refactor: migrate from go-json-experiment to encoding/json/v2 (#9422) * fix(vuln): compare `nuget` package names in lower case (#9456) * chore: Update release flow to include chocolatey (#9460) * docs: document eol supportability (#9434) * docs(report): add nuanses about secret/license scanner in summary table (#9442) * ci: use environment variables in GitHub Actions for improved security (#9433) * chore: bump Go to 1.24.7 (#9435) * fix(nodejs): use snapshot string as `Package.ID` for pnpm packages (#9330) * ci(helm): bump Trivy version to 0.66.0 for Trivy Helm Chart 0.18.0 (#9425) - Fix version number shown for 'trivy -v' ++++ wsl-firstboot: - Update to version 1.5.9+git20251110.c1fca4e: * Adding Leap/TW check to modules/registration * Changing date tag for modules/switch - Update to version 1.5.8+git20251110.828658c: * Adding 'or' for when ID == opensuse-tumbleweed so that wsl-config doesn't list 'switch' as an option in TW as well ------------------------------------------------------------------ ------------------ 2025-11-9 - Nov 9 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaThunderbird: - Mozilla Thunderbird 140.5.0 ESR MFSA 2025-91 (bsc#1253188) * CVE-2025-13012 (bmo#1991458) Race condition in the Graphics component * CVE-2025-13016 (bmo#1992130) Incorrect boundary conditions in the JavaScript: WebAssembly component * CVE-2025-13017 (bmo#1980904) Same-origin policy bypass in the DOM: Notifications component * CVE-2025-13018 (bmo#1984940) Mitigation bypass in the DOM: Security component * CVE-2025-13019 (bmo#1988412) Same-origin policy bypass in the DOM: Workers component * CVE-2025-13013 (bmo#1991945) Mitigation bypass in the DOM: Core & HTML component * CVE-2025-13020 (bmo#1995686) Use-after-free in the WebRTC: Audio/Video component * CVE-2025-13014 (bmo#1994241) Use-after-free in the Audio/Video component * CVE-2025-13015 (bmo#1994164) Spoofing issue in Thunderbird * fixed: Could not drag and drop ICS file to Today Pane (bmo#1992935) * fixed: With Thunderbird closed, clicking a 'mailto:' link to send signed message failed (bmo#1972857) * fixed: Upgrade from 128.x->140.x broke authentication for @att.net using Yahoo backend (bmo#1978361) ++++ MozillaThunderbird: - Mozilla Thunderbird 140.5.0 ESR MFSA 2025-91 (bsc#1253188) * CVE-2025-13012 (bmo#1991458) Race condition in the Graphics component * CVE-2025-13016 (bmo#1992130) Incorrect boundary conditions in the JavaScript: WebAssembly component * CVE-2025-13017 (bmo#1980904) Same-origin policy bypass in the DOM: Notifications component * CVE-2025-13018 (bmo#1984940) Mitigation bypass in the DOM: Security component * CVE-2025-13019 (bmo#1988412) Same-origin policy bypass in the DOM: Workers component * CVE-2025-13013 (bmo#1991945) Mitigation bypass in the DOM: Core & HTML component * CVE-2025-13020 (bmo#1995686) Use-after-free in the WebRTC: Audio/Video component * CVE-2025-13014 (bmo#1994241) Use-after-free in the Audio/Video component * CVE-2025-13015 (bmo#1994164) Spoofing issue in Thunderbird * fixed: Could not drag and drop ICS file to Today Pane (bmo#1992935) * fixed: With Thunderbird closed, clicking a 'mailto:' link to send signed message failed (bmo#1972857) * fixed: Upgrade from 128.x->140.x broke authentication for @att.net using Yahoo backend (bmo#1978361) ------------------------------------------------------------------ ------------------ 2025-11-8 - Nov 8 2025 ------------------- ------------------------------------------------------------------ ++++ gitea-tea: - CLI.md is supposed to be a text file - Use fixed git revision to refer to version 0.11.1 - Remove bogus part from package description ++++ gitea-tea: - CLI.md is supposed to be a text file - Use fixed git revision to refer to version 0.11.1 - Remove bogus part from package description ++++ smartmontools: - update-smart-drivedb: Provide support for the new upstream GitHub repository. (smartmontools-update-smart-drivedb.patch, refactor smartmontools-drivedb_h-update.sh). - update-smart-drivedb: Do not overwrite files in /usr/share. Use /var/lib provided by --with-drivedbinstdir. - Add smartmontools-drivedb.h version 5894 from the branch 7.5. ++++ wsl-firstboot: - Update to version 1.5.7+git20251108.7a67d02: * Adding a check for ID since we have Leap/SLE 16.0 - Also will 'continue' when ID == opensuse-leap so that wsl-config doesn't list 'switch' as an option in Leap ------------------------------------------------------------------ ------------------ 2025-11-7 - Nov 7 2025 ------------------- ------------------------------------------------------------------ ++++ agama-yast: - Fixed an error in the calculation of partitions when several MD RAIDs are created (bsc#1253145). ++++ az-cli-cmd: - version 1.37.0 - Drop dependencies that do not appear needed. Not referenced in the sources of azure-cli upstream. (bsc#1253140) - Change the deriviation chain by adding the az-sdk container as a base ++++ az-cli-cmd: - version 1.37.0 - Drop dependencies that do not appear needed. Not referenced in the sources of azure-cli upstream. (bsc#1253140) - Change the deriviation chain by adding the az-sdk container as a base ++++ kernel-64kb: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-default: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-rt: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ dtb-aarch64: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-source: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-docs: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-kvmsmall: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-obs-build: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-obs-qa: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-syms: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ kernel-zfcpdump: - io_uring/rw: forbid multishot async reads (git-fixes). - commit b8ee47f - io-wq: backoff when retrying worker creation (git-fixes). - commit ed7c8cc - io_uring/waitid: setup async data in the prep handler (git-fixes). - commit c823259 - io_uring/uring_cmd: remove dead req_has_async_data() check (git-fixes). - commit bbe13e2 - KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). - commit e2a2287 - KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes). - commit 39eaa4c - KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). - commit 5da1bc9 - KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). - commit 613b778 - x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). - commit 7dd7ddd - fs/smb: Fix inconsistent refcnt update (bsc#1250176, CVE-2025-39819). - commit 22b6cc8 - KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes). - commit a8ef915 - Refresh patches.suse/x86-microcode-AMD-Limit-Entrysign-signature-checking-to-kn.patch. - commit ec68be1 - iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes). - commit e7a1195 - net/9p: fix double req put in p9_fd_cancelled (CVE-2025-40027 bsc#1252763). - commit 2c3c104 - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (CVE-2025-40038 bsc#1252817). - commit d41e9f1 - tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705). - commit f8c7e99 ++++ lasso: - Fix CVE-2025-46404 (bsc#1253092) - Denial of service in Entr'ouvert Lasso * CVE-2025-46404.patch - Fix CVE-2025-46705 (bsc#1253093) - Denial of service in Entr'ouvert Lasso * CVE-2025-46705.patch - Fix CVE-2025-47151 (bsc#1253095) - type confusion vulnerability in the lasso_node_impl_init_from_xml functionality * CVE-2025-47151.patch ++++ openssh: - Add openssh-cve-2025-61984-username-validation.patch (bsc#1251198, CVE-2025-61984). - Add openssh-cve-2025-61985-nul-url-encode.patch (bsc#1251199, CVE-2025-61985). ++++ opensuse-migration-tool: - Drop accidentally created submodule * Add opensuse-migration-tool to .gitignore ++++ qemu: - Support for Intel TDX (jsc#PED-9266) A list of backported patches (so far) is: i386/tdx: Build TDX only for 64-bit target i386/tdx: Clarify the error message of mrconfigid/mrowner/mrownerconfig i386/tdx: Fix the typo of the comment of struct TdxGuest i386/cpu: Rename enable_cpuid_0x1f to force_cpuid_0x1f i386/tdx: Error and exit when named cpu model is requested i386/cpu: Warn about why CPUID_EXT_PDCM is not available i386/tdvf: Fix build on 32-bit host i386/tdx: Fix build on 32-bit host x86/loader: Don't update kernel header for CoCo VMs docs: Add TDX documentation i386/tdx: Validate phys_bits against host value i386/tdx: Make invtsc default on i386/tdx: Don't treat SYSCALL as unavailable i386/tdx: Fetch and validate CPUID of TD guest target/i386: Print CPUID subleaf info for unsupported feature i386: Remove unused parameter "uint32_t bit" in feature_word_description() i386/cgs: Introduce x86_confidential_guest_check_features() i386/tdx: Define supported KVM features for TDX i386/tdx: Add XFD to supported bit of TDX i386/tdx: Add supported CPUID bits relates to XFAM i386/tdx: Add supported CPUID bits related to TD Attributes i386/tdx: Add TDX fixed1 bits to supported CPUIDs i386/tdx: Implement adjust_cpuid_features() for TDX i386/cgs: Rename *mask_cpuid_features() to *adjust_cpuid_features() cpu: Don't set vcpu_dirty when guest_state_protected i386/apic: Skip kvm_apic_put() for TDX i386/tdx: Only configure MSR_IA32_UCODE_REV in kvm_init_msrs() for TDs i386/tdx: Don't synchronize guest tsc for TDs i386/tdx: Set and check kernel_irqchip mode for TDX i386/tdx: Disable PIC for TDX VMs i386/tdx: Disable SMM for TDX VMs i386/tdx: Set kvm_readonly_mem_enabled to false for TDX VM i386/tdx: Force exposing CPUID 0x1f i386/cpu: Introduce enable_cpuid_0x1f to force exposing CPUID 0x1f i386/tdx: implement tdx_cpu_instance_init() i386/cpu: introduce x86_confidential_guest_cpu_instance_init() kvm: Check KVM_CAP_MAX_VCPUS at vm level i386/tdx: Wire TDX_REPORT_FATAL_ERROR with GuestPanic facility i386/tdx: Handle KVM_SYSTEM_EVENT_TDX_FATAL i386/tdx: Enable user exit on KVM_HC_MAP_GPA_RANGE i386/tdx: Finalize TDX VM i386/tdx: Call KVM_TDX_INIT_VCPU to initialize TDX vcpu i386/tdx: Add TDVF memory via KVM_TDX_INIT_MEM_REGION i386/tdx: Setup the TD HOB list headers: Add definitions from UEFI spec for volumes, resources, etc... i386/tdx: Track RAM entries for TDX VM i386/tdx: Track mem_ptr for each firmware entry of TDVF i386/tdx: Don't initialize pc.rom for TDX VMs i386/tdx: Parse TDVF metadata for TDX VM i386/tdvf: Introduce function to parse TDVF metadata i386/tdx: load TDVF for TD guest i386/tdx: Implement user specified tsc frequency i386/tdx: Set APIC bus rate to match with what TDX module enforces i386/tdx: Support user configurable mrconfigid/mrowner/mrownerconfig i386/tdx: Validate TD attributes i386/tdx: Wire CPU features up with attributes of TD guest i386/tdx: Make sept_ve_disable set by default i386/tdx: Add property sept-ve-disable for tdx-guest object i386/tdx: Initialize TDX before creating TD vcpus kvm: Introduce kvm_arch_pre_create_vcpu() i386/tdx: Introduce is_tdx_vm() helper and cache tdx_guest object i386/tdx: Get tdx_capabilities via KVM_TDX_CAPABILITIES i386/tdx: Implement tdx_kvm_init() to initialize TDX VM context i386/tdx: Implement tdx_kvm_type() for TDX i386: Introduce tdx-guest object linux-headers: update from 6.15 + kvm/next linux-headers: Update to Linux v6.15-rc3 ++++ qemu: - Update to version 10.0.6 Full backport list: https://lore.kernel.org/qemu-devel/1761022287.744330.6357.nullmailer@tls.msk.ru/ A selection of them is reported below: linux-user/microblaze: Fix little-endianness binary target/hppa: correct size bit parity for fmpyadd target/i386: user: do not set up a valid LDT on reset async: access bottom half flags with qatomic_read target/i386: fix x86_64 pushw op i386/tcg/smm_helper: Properly apply DR values on SMM entry / exit i386/cpu: Prevent delivering SIPI during SMM in TCG mode i386/kvm: Expose ARCH_CAP_FB_CLEAR when invulnerable to MDS target/i386: Fix CR2 handling for non-canonical addresses block/curl.c: Use explicit long constants in curl_easy_setopt calls pcie_sriov: Fix broken MMIO accesses from SR-IOV VFs target/riscv: rvv: Fix vslide1[up|down].vx unexpected result when XLEN2 and SEWd target/riscv: Fix ssamoswap error handling - Update to version 10.0.5: Full backport list: https://lore.kernel.org/qemu-devel/1759986125.676506.643525.nullmailer@tls.msk.ru/ A selection of them is reported below: tests/functional/test_aarch64_sbsaref_freebsd: Fix the URL of the ISO image tests/functional/test_ppc_bamboo: Replace broken link with working assets physmem: Destroy all CPU AddressSpaces on unrealize memory: New AS helper to serialize destroy+free include/system/memory.h: Clarify address_space_destroy() behaviour migration: Fix state transition in postcopy_start() error handling target/riscv: rvv: Modify minimum VLEN according to enabled vector extensions target/riscv: rvv: Replace checking V by checking Zve32x target/riscv: Fix endianness swap on compressed instructions hw/riscv/riscv-iommu: Fixup PDT Nested Walk ... - Fix bsc#1230042 - Support for Intel TDX (jsc#PED-9266) A list of backported patches (so far) is: i386/tdx: Build TDX only for 64-bit target i386/tdx: Clarify the error message of mrconfigid/mrowner/mrownerconfig i386/tdx: Fix the typo of the comment of struct TdxGuest i386/cpu: Rename enable_cpuid_0x1f to force_cpuid_0x1f i386/tdx: Error and exit when named cpu model is requested i386/cpu: Warn about why CPUID_EXT_PDCM is not available i386/tdvf: Fix build on 32-bit host i386/tdx: Fix build on 32-bit host x86/loader: Don't update kernel header for CoCo VMs docs: Add TDX documentation i386/tdx: Validate phys_bits against host value i386/tdx: Make invtsc default on i386/tdx: Don't treat SYSCALL as unavailable i386/tdx: Fetch and validate CPUID of TD guest target/i386: Print CPUID subleaf info for unsupported feature i386: Remove unused parameter "uint32_t bit" in feature_word_description() i386/cgs: Introduce x86_confidential_guest_check_features() i386/tdx: Define supported KVM features for TDX i386/tdx: Add XFD to supported bit of TDX i386/tdx: Add supported CPUID bits relates to XFAM i386/tdx: Add supported CPUID bits related to TD Attributes i386/tdx: Add TDX fixed1 bits to supported CPUIDs i386/tdx: Implement adjust_cpuid_features() for TDX i386/cgs: Rename *mask_cpuid_features() to *adjust_cpuid_features() cpu: Don't set vcpu_dirty when guest_state_protected i386/apic: Skip kvm_apic_put() for TDX i386/tdx: Only configure MSR_IA32_UCODE_REV in kvm_init_msrs() for TDs i386/tdx: Don't synchronize guest tsc for TDs i386/tdx: Set and check kernel_irqchip mode for TDX i386/tdx: Disable PIC for TDX VMs i386/tdx: Disable SMM for TDX VMs i386/tdx: Set kvm_readonly_mem_enabled to false for TDX VM i386/tdx: Force exposing CPUID 0x1f i386/cpu: Introduce enable_cpuid_0x1f to force exposing CPUID 0x1f i386/tdx: implement tdx_cpu_instance_init() i386/cpu: introduce x86_confidential_guest_cpu_instance_init() kvm: Check KVM_CAP_MAX_VCPUS at vm level i386/tdx: Wire TDX_REPORT_FATAL_ERROR with GuestPanic facility i386/tdx: Handle KVM_SYSTEM_EVENT_TDX_FATAL i386/tdx: Enable user exit on KVM_HC_MAP_GPA_RANGE i386/tdx: Finalize TDX VM i386/tdx: Call KVM_TDX_INIT_VCPU to initialize TDX vcpu i386/tdx: Add TDVF memory via KVM_TDX_INIT_MEM_REGION i386/tdx: Setup the TD HOB list headers: Add definitions from UEFI spec for volumes, resources, etc... i386/tdx: Track RAM entries for TDX VM i386/tdx: Track mem_ptr for each firmware entry of TDVF i386/tdx: Don't initialize pc.rom for TDX VMs i386/tdx: Parse TDVF metadata for TDX VM i386/tdvf: Introduce function to parse TDVF metadata i386/tdx: load TDVF for TD guest i386/tdx: Implement user specified tsc frequency i386/tdx: Set APIC bus rate to match with what TDX module enforces i386/tdx: Support user configurable mrconfigid/mrowner/mrownerconfig i386/tdx: Validate TD attributes i386/tdx: Wire CPU features up with attributes of TD guest i386/tdx: Make sept_ve_disable set by default i386/tdx: Add property sept-ve-disable for tdx-guest object i386/tdx: Initialize TDX before creating TD vcpus kvm: Introduce kvm_arch_pre_create_vcpu() i386/tdx: Introduce is_tdx_vm() helper and cache tdx_guest object i386/tdx: Get tdx_capabilities via KVM_TDX_CAPABILITIES i386/tdx: Implement tdx_kvm_init() to initialize TDX VM context i386/tdx: Implement tdx_kvm_type() for TDX i386: Introduce tdx-guest object linux-headers: update from 6.15 + kvm/next linux-headers: Update to Linux v6.15-rc3 ++++ qemu-linux-user: - Support for Intel TDX (jsc#PED-9266) A list of backported patches (so far) is: i386/tdx: Build TDX only for 64-bit target i386/tdx: Clarify the error message of mrconfigid/mrowner/mrownerconfig i386/tdx: Fix the typo of the comment of struct TdxGuest i386/cpu: Rename enable_cpuid_0x1f to force_cpuid_0x1f i386/tdx: Error and exit when named cpu model is requested i386/cpu: Warn about why CPUID_EXT_PDCM is not available i386/tdvf: Fix build on 32-bit host i386/tdx: Fix build on 32-bit host x86/loader: Don't update kernel header for CoCo VMs docs: Add TDX documentation i386/tdx: Validate phys_bits against host value i386/tdx: Make invtsc default on i386/tdx: Don't treat SYSCALL as unavailable i386/tdx: Fetch and validate CPUID of TD guest target/i386: Print CPUID subleaf info for unsupported feature i386: Remove unused parameter "uint32_t bit" in feature_word_description() i386/cgs: Introduce x86_confidential_guest_check_features() i386/tdx: Define supported KVM features for TDX i386/tdx: Add XFD to supported bit of TDX i386/tdx: Add supported CPUID bits relates to XFAM i386/tdx: Add supported CPUID bits related to TD Attributes i386/tdx: Add TDX fixed1 bits to supported CPUIDs i386/tdx: Implement adjust_cpuid_features() for TDX i386/cgs: Rename *mask_cpuid_features() to *adjust_cpuid_features() cpu: Don't set vcpu_dirty when guest_state_protected i386/apic: Skip kvm_apic_put() for TDX i386/tdx: Only configure MSR_IA32_UCODE_REV in kvm_init_msrs() for TDs i386/tdx: Don't synchronize guest tsc for TDs i386/tdx: Set and check kernel_irqchip mode for TDX i386/tdx: Disable PIC for TDX VMs i386/tdx: Disable SMM for TDX VMs i386/tdx: Set kvm_readonly_mem_enabled to false for TDX VM i386/tdx: Force exposing CPUID 0x1f i386/cpu: Introduce enable_cpuid_0x1f to force exposing CPUID 0x1f i386/tdx: implement tdx_cpu_instance_init() i386/cpu: introduce x86_confidential_guest_cpu_instance_init() kvm: Check KVM_CAP_MAX_VCPUS at vm level i386/tdx: Wire TDX_REPORT_FATAL_ERROR with GuestPanic facility i386/tdx: Handle KVM_SYSTEM_EVENT_TDX_FATAL i386/tdx: Enable user exit on KVM_HC_MAP_GPA_RANGE i386/tdx: Finalize TDX VM i386/tdx: Call KVM_TDX_INIT_VCPU to initialize TDX vcpu i386/tdx: Add TDVF memory via KVM_TDX_INIT_MEM_REGION i386/tdx: Setup the TD HOB list headers: Add definitions from UEFI spec for volumes, resources, etc... i386/tdx: Track RAM entries for TDX VM i386/tdx: Track mem_ptr for each firmware entry of TDVF i386/tdx: Don't initialize pc.rom for TDX VMs i386/tdx: Parse TDVF metadata for TDX VM i386/tdvf: Introduce function to parse TDVF metadata i386/tdx: load TDVF for TD guest i386/tdx: Implement user specified tsc frequency i386/tdx: Set APIC bus rate to match with what TDX module enforces i386/tdx: Support user configurable mrconfigid/mrowner/mrownerconfig i386/tdx: Validate TD attributes i386/tdx: Wire CPU features up with attributes of TD guest i386/tdx: Make sept_ve_disable set by default i386/tdx: Add property sept-ve-disable for tdx-guest object i386/tdx: Initialize TDX before creating TD vcpus kvm: Introduce kvm_arch_pre_create_vcpu() i386/tdx: Introduce is_tdx_vm() helper and cache tdx_guest object i386/tdx: Get tdx_capabilities via KVM_TDX_CAPABILITIES i386/tdx: Implement tdx_kvm_init() to initialize TDX VM context i386/tdx: Implement tdx_kvm_type() for TDX i386: Introduce tdx-guest object linux-headers: update from 6.15 + kvm/next linux-headers: Update to Linux v6.15-rc3 ++++ qemu-linux-user: - Update to version 10.0.6 Full backport list: https://lore.kernel.org/qemu-devel/1761022287.744330.6357.nullmailer@tls.msk.ru/ A selection of them is reported below: linux-user/microblaze: Fix little-endianness binary target/hppa: correct size bit parity for fmpyadd target/i386: user: do not set up a valid LDT on reset async: access bottom half flags with qatomic_read target/i386: fix x86_64 pushw op i386/tcg/smm_helper: Properly apply DR values on SMM entry / exit i386/cpu: Prevent delivering SIPI during SMM in TCG mode i386/kvm: Expose ARCH_CAP_FB_CLEAR when invulnerable to MDS target/i386: Fix CR2 handling for non-canonical addresses block/curl.c: Use explicit long constants in curl_easy_setopt calls pcie_sriov: Fix broken MMIO accesses from SR-IOV VFs target/riscv: rvv: Fix vslide1[up|down].vx unexpected result when XLEN2 and SEWd target/riscv: Fix ssamoswap error handling - Update to version 10.0.5: Full backport list: https://lore.kernel.org/qemu-devel/1759986125.676506.643525.nullmailer@tls.msk.ru/ A selection of them is reported below: tests/functional/test_aarch64_sbsaref_freebsd: Fix the URL of the ISO image tests/functional/test_ppc_bamboo: Replace broken link with working assets physmem: Destroy all CPU AddressSpaces on unrealize memory: New AS helper to serialize destroy+free include/system/memory.h: Clarify address_space_destroy() behaviour migration: Fix state transition in postcopy_start() error handling target/riscv: rvv: Modify minimum VLEN according to enabled vector extensions target/riscv: rvv: Replace checking V by checking Zve32x target/riscv: Fix endianness swap on compressed instructions hw/riscv/riscv-iommu: Fixup PDT Nested Walk ... - Fix bsc#1230042 - Support for Intel TDX (jsc#PED-9266) A list of backported patches (so far) is: i386/tdx: Build TDX only for 64-bit target i386/tdx: Clarify the error message of mrconfigid/mrowner/mrownerconfig i386/tdx: Fix the typo of the comment of struct TdxGuest i386/cpu: Rename enable_cpuid_0x1f to force_cpuid_0x1f i386/tdx: Error and exit when named cpu model is requested i386/cpu: Warn about why CPUID_EXT_PDCM is not available i386/tdvf: Fix build on 32-bit host i386/tdx: Fix build on 32-bit host x86/loader: Don't update kernel header for CoCo VMs docs: Add TDX documentation i386/tdx: Validate phys_bits against host value i386/tdx: Make invtsc default on i386/tdx: Don't treat SYSCALL as unavailable i386/tdx: Fetch and validate CPUID of TD guest target/i386: Print CPUID subleaf info for unsupported feature i386: Remove unused parameter "uint32_t bit" in feature_word_description() i386/cgs: Introduce x86_confidential_guest_check_features() i386/tdx: Define supported KVM features for TDX i386/tdx: Add XFD to supported bit of TDX i386/tdx: Add supported CPUID bits relates to XFAM i386/tdx: Add supported CPUID bits related to TD Attributes i386/tdx: Add TDX fixed1 bits to supported CPUIDs i386/tdx: Implement adjust_cpuid_features() for TDX i386/cgs: Rename *mask_cpuid_features() to *adjust_cpuid_features() cpu: Don't set vcpu_dirty when guest_state_protected i386/apic: Skip kvm_apic_put() for TDX i386/tdx: Only configure MSR_IA32_UCODE_REV in kvm_init_msrs() for TDs i386/tdx: Don't synchronize guest tsc for TDs i386/tdx: Set and check kernel_irqchip mode for TDX i386/tdx: Disable PIC for TDX VMs i386/tdx: Disable SMM for TDX VMs i386/tdx: Set kvm_readonly_mem_enabled to false for TDX VM i386/tdx: Force exposing CPUID 0x1f i386/cpu: Introduce enable_cpuid_0x1f to force exposing CPUID 0x1f i386/tdx: implement tdx_cpu_instance_init() i386/cpu: introduce x86_confidential_guest_cpu_instance_init() kvm: Check KVM_CAP_MAX_VCPUS at vm level i386/tdx: Wire TDX_REPORT_FATAL_ERROR with GuestPanic facility i386/tdx: Handle KVM_SYSTEM_EVENT_TDX_FATAL i386/tdx: Enable user exit on KVM_HC_MAP_GPA_RANGE i386/tdx: Finalize TDX VM i386/tdx: Call KVM_TDX_INIT_VCPU to initialize TDX vcpu i386/tdx: Add TDVF memory via KVM_TDX_INIT_MEM_REGION i386/tdx: Setup the TD HOB list headers: Add definitions from UEFI spec for volumes, resources, etc... i386/tdx: Track RAM entries for TDX VM i386/tdx: Track mem_ptr for each firmware entry of TDVF i386/tdx: Don't initialize pc.rom for TDX VMs i386/tdx: Parse TDVF metadata for TDX VM i386/tdvf: Introduce function to parse TDVF metadata i386/tdx: load TDVF for TD guest i386/tdx: Implement user specified tsc frequency i386/tdx: Set APIC bus rate to match with what TDX module enforces i386/tdx: Support user configurable mrconfigid/mrowner/mrownerconfig i386/tdx: Validate TD attributes i386/tdx: Wire CPU features up with attributes of TD guest i386/tdx: Make sept_ve_disable set by default i386/tdx: Add property sept-ve-disable for tdx-guest object i386/tdx: Initialize TDX before creating TD vcpus kvm: Introduce kvm_arch_pre_create_vcpu() i386/tdx: Introduce is_tdx_vm() helper and cache tdx_guest object i386/tdx: Get tdx_capabilities via KVM_TDX_CAPABILITIES i386/tdx: Implement tdx_kvm_init() to initialize TDX VM context i386/tdx: Implement tdx_kvm_type() for TDX i386: Introduce tdx-guest object linux-headers: update from 6.15 + kvm/next linux-headers: Update to Linux v6.15-rc3 ++++ rubygem-agama-yast: - Fixed an error in the calculation of partitions when several MD RAIDs are created (bsc#1253145). ------------------------------------------------------------------ ------------------ 2025-11-6 - Nov 6 2025 ------------------- ------------------------------------------------------------------ ++++ ImageMagick: - fix policy to allow own configuration file reads (ImageMagick_policy_etc.patch) adapt ImageMagick-configuration-SUSE.patch and reorder patch handling ++++ aws-cli-cmd: - Remove the executable script if it exists prior to generation of a new wrapper by flake-ctl. Otherwise flake-ctl complains about the existence of the script and we get an error during package update. ++++ aws-cli-cmd: - Remove the executable script if it exists prior to generation of a new wrapper by flake-ctl. Otherwise flake-ctl complains about the existence of the script and we get an error during package update. ++++ az-cli-cmd: - Remove the executable script if it exists prior to generation of a new wrapper by flake-ctl. Otherwise flake-ctl complains about the existence of the script and we get an error during package update. ++++ az-cli-cmd: - Remove the executable script if it exists prior to generation of a new wrapper by flake-ctl. Otherwise flake-ctl complains about the existence of the script and we get an error during package update. ++++ buildah: - Add patch for CVE-2025-52881 (bsc#1253096): * 0003-CVE-2025-52881-backport-subset-of-patch-from-runc.patch - Rebase patches: * 0002-run-handle-relabeling-bind-mounts-ourselves.patch * 0001-CVE-2025-22869-vendor-ssh-limit-the-size-of-the-inte.patch - Update to version 1.39.5: * [release-1.39] Bump to Buildah v1.39.5 * [release-1.39] Bump x/tools to v0.26.0 * [release-1.39] replace deprecated selinux/label calls * [release-1.39] Bump runc to v1.2.8 - CVE-2025-52881 * Builder.sbomScan(): don't break non-root scanners * [release-1.39] Bump to Buildah v1.39.4 * [release-1.39] Bump c/image to v5.34.3, c/common v0.62.3 * createPlatformContainer: drop MS_REMOUNT|MS_BIND * [release-1.39] Bump to Buildah v1.39.3 * [release-1.39] Bump c/storage to v1.57.2, c/image v5.34.2,... * [release-1.39] Bump to Buildah v1.39.2 * [release-1.39] tests/conformance/testdata/Dockerfile.add:... * [release-1.39] Bump c/image to v5.34.1, c/common v0.62.1 * Tag v1.39.1 * CI config: post-branch update * chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security] * chroot createPlatformContainer: use MS_REMOUNT * Bump to Buildah v1.39.0 * Bump c/storage v1.57.1, c/image 5.34.0, c/common v0.62.0 * Update module github.com/containers/storage to v1.57.0 * CI, .cirrus: parallelize containerized integration * ed's comment: cleanup * use seperate blobinfocache for flaky test * bump CI VMs to 4 CPUs (was: 2) for integration tests * cleanup, debug, and disable parallel in blobcache tests * bats tests - parallelize * pkg/overlay: cleanups * RPM: include check section to silence rpmlint * RPM: use default gobuild macro on RHEL * tests: remove masked /sys/dev/block check * vendor to latest c/{common,image,storage} * build, run: record hash or digest in image history * Accept image names as sources for cache mounts * Run(): always clean up options.ExternalImageMounts * refactor: replace golang.org/x/exp with stdlib * Update to c/image @main * fix broken doc link * run_freebsd.go: only import runtime-spec once * fix(deps): update module github.com/docker/docker to v27.5.1+incompatible * bump github.com/vbatts/tar-split * Add more checks to the --mount flag parsing logic * chroot mount flags integration test: copy binaries * fix(deps): update module github.com/moby/buildkit to v0.19.0 * relabel(): correct a misleading parameter name * Fix TOCTOU error when bind and cache mounts use "src" values * define.TempDirForURL(): always use an intermediate subdirectory * internal/volume.GetBindMount(): discard writes in bind mounts * pkg/overlay: add a MountLabel flag to Options * pkg/overlay: add a ForceMount flag to Options * Add internal/volumes.bindFromChroot() * Add an internal/open package * fix(deps): update module github.com/containers/common to v0.61.1 * fix(deps): update module github.com/containers/image/v5 to v5.33.1 * [CI:DOCS] Touch up changelogs * fix(deps): update module github.com/docker/docker to v27.5.0+incompatible * copy-preserving-extended-attributes: use a different base image * fix(deps): update github.com/containers/luksy digest to a3a812d * chore(deps): update module golang.org/x/net to v0.33.0 [security] * fix(deps): update module golang.org/x/crypto to v0.32.0 * New VM Images * fix(deps): update module github.com/opencontainers/runc to v1.2.4 * fix(deps): update module github.com/docker/docker to v27.4.1+incompatible * fix(deps): update module github.com/containers/ocicrypt to v1.2.1 * Add support for --security-opt mask and unmask * Allow cache mounts to be stages or additional build contexts * [skip-ci] RPM: cleanup changelog conditionals * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.6 * fix(deps): update module github.com/moby/buildkit to v0.18.2 * Fix an error message in the chroot unit test * copier: use .PAXRecords instead of .Xattrs * chroot: on Linux, try to pivot_root before falling back to chroot * manifest add: add --artifact-annotation * Add context to an error message * Update module golang.org/x/crypto to v0.31.0 * Update module github.com/opencontainers/runc to v1.2.3 * Update module github.com/docker/docker to v27.4.0+incompatible * Update module github.com/cyphar/filepath-securejoin to v0.3.5 * CI: don't build a binary in the unit tests task * CI: use /tmp for $GOCACHE * CI: remove dependencies on the cross-build task * CI: run cross-compile task with make -j * Update module github.com/docker/docker to v27.4.0-rc.4+incompatible * Update module github.com/moby/buildkit to v0.18.1 * Update module golang.org/x/crypto to v0.30.0 * Update golang.org/x/exp digest to 2d47ceb * Update github.com/opencontainers/runtime-tools digest to f7e3563 * [skip-ci] Packit: remove rhel copr build jobs * [skip-ci] Packit: switch to fedora-all for copr * Update module github.com/stretchr/testify to v1.10.0 * Update module github.com/moby/buildkit to v0.17.2 * Makefile: use `find` to detect source files * Tests: make _prefetch() parallel-safe * Update module github.com/opencontainers/runc to v1.2.2 * executor: allow to specify --no-pivot-root * Update module github.com/moby/sys/capability to v0.4.0 * Makefile: mv codespell config to .codespellrc * Fix some codespell errors * Makefile,install.md: rm gopath stuff * Makefile: rm targets working on .. * build: rm exclude_graphdriver_devicemapper tag * Makefile: rm unused var * Finish updating to go 1.22 * CI VMs: bump again * Bump to Buidah v1.39.0-dev * Bump to Buildah v1.38.0 * Bump to c/common v0.61.0, c/image v5.33.0, c/storage v1.56.0 * fix(deps): update module golang.org/x/crypto to v0.29.0 * fix(deps): update module github.com/moby/buildkit to v0.17.1 * fix(deps): update module github.com/containers/storage to v1.56.0 * tests: skip two ulimit tests * CI VMs: bump f40 -> f41 * tests/tools: rebuild tools when we change versions * tests/tools: update golangci-lint to v1.61.0 * fix(deps): update module github.com/moby/buildkit to v0.17.0 * Handle RUN --mount with relative targets and no configured workdir * tests: bud: make parallel-safe * fix(deps): update module github.com/opencontainers/runc to v1.2.1 * fix(deps): update golang.org/x/exp digest to f66d83c * fix(deps): update github.com/opencontainers/runtime-tools digest to 6c9570a * tests: blobcache: use unique image name * tests: sbom: never write to cwd * tests: mkcw: bug fixes, refactor * deps: bump runc to v1.2.0 * deps: switch to moby/sys/userns * tests/test_runner.sh: remove some redundancies * Integration tests: run git daemon on a random-but-bind()able port * fix(deps): update module github.com/opencontainers/selinux to v1.11.1 * go.mod: remove unnecessary replace * Document more buildah build --secret options * Add support for COPY --exclude and ADD --exclude options * fix(deps): update github.com/containers/luksy digest to e2530d6 * chore(deps): update dependency containers/automation_images to v20241010 * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.4 * Properly validate cache IDs and sources * [skip-ci] Packit: constrain koji job to fedora package to avoid dupes * Audit and tidy OWNERS * fix(deps): update module golang.org/x/crypto to v0.28.0 * tests: add quotes to names * vendor: update c/common to latest * CVE-2024-9407: validate "bind-propagation" flag settings * vendor: switch to moby/sys/capability * Don't set ambient capabilities * Document that zstd:chunked is downgraded to zstd when encrypting * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.3 * buildah-manifest-create.1: Fix manpage section * chore(deps): update dependency ubuntu to v24 * Make `buildah manifest push --all` true by default * chroot: add newlines at the end of printed error messages * Do not error on trying to write IMA xattr as rootless * fix: remove duplicate conditions * fix(deps): update module github.com/moby/buildkit to v0.16.0 * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.2 * Document how entrypoint is configured in buildah config * In a container, try to register binfmt_misc * imagebuildah.StageExecutor: clean up volumes/volumeCache * build: fall back to parsing a TARGETPLATFORM build-arg * `manifest add --artifact`: handle multiple values * Packit: split out ELN jobs and reuse fedora downstream targets * Packit: Enable sidetags for bodhi updates * fix(deps): update module github.com/docker/docker to v27.2.1+incompatible * tests/bud.bats: add git source * add: add support for git source * Add support for the new c/common pasta options * vendor latest c/common * fix(deps): update module golang.org/x/term to v0.24.0 * fix(deps): update module github.com/fsouza/go-dockerclient to v1.12.0 * packit: update fedora and epel targets * cirrus: disable f39 testing * cirrus: fix fedora names * update to go 1.22 * Vendor c/common:9d025e4cb348 * copier: handle globbing with "**" path components * fix(deps): update golang.org/x/exp digest to 9b4947d * fix(deps): update github.com/containers/luksy digest to 2e7307c * imagebuildah: make scratch config handling toggleable * fix(deps): update module github.com/docker/docker to v27.2.0+incompatible * Add a validation script for Makefile $(SOURCES) * fix(deps): update module github.com/openshift/imagebuilder to v1.2.15 * New VMs * Update some godocs, use 0o to prefix an octal in a comment * buildah-build.1.md: expand the --layer-label description * fix(deps): update module github.com/containers/common to v0.60.2 * stage_executor: set avoidLookingCache only if mounting stage * imagebuildah: additionalContext is not a local built stage * run: fix a nil pointer dereference on FreeBSD * CI: enable the whitespace linter * Fix some govet linter warnings * Commit(): retry committing to local storage on storage.LayerUnknown * CI: enable the gofumpt linter * conformance: move weirdly-named files out of the repository * fix(deps): update module github.com/docker/docker to v27.1.2+incompatible * fix(deps): update module github.com/containers/common to v0.60.1 * *: use gofmt -s, add gofmt linter * *: fix build tags * fix(deps): update module github.com/containers/image/v5 to v5.32.1 * Add(): re-escape any globbed items that included escapes * conformance tests: use mirror.gcr.io for most images * unit tests: use test-specific policy.json and registries.conf * fix(deps): update module golang.org/x/sys to v0.24.0 * Update to spun-out "github.com/containerd/platforms" * Bump github.com/containerd/containerd * test/tools/Makefile: duplicate the vendor-in-container target * linters: unchecked error * linters: don't end loop iterations with "else" when "then" would * linters: unused arguments shouldn't have names * linters: rename checkIdsGreaterThan5() to checkIDsGreaterThan5() * linters: don't name variables "cap" * `make lint`: use --timeout instead of --deadline * Drop the e2e test suite * fix(deps): update module golang.org/x/crypto to v0.26.0 * fix(deps): update module github.com/onsi/gomega to v1.34.1 * `make vendor-in-container`: use the caller's Go cache if it exists * fix(deps): fix test/tools ginkgo typo * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.1 * Update to keep up with API changes in storage * fix(deps): update github.com/containers/luksy digest to 1f482a9 * install: On Debian/Ubuntu, add installation of libbtrfs-dev * fix(deps): update module golang.org/x/sys to v0.23.0 * fix(deps): update golang.org/x/exp digest to 8a7402a * fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.2 * Use Epoch: 2 and respect the epoch in dependencies. * Bump to Buildah v1.38.0-dev * Buildah v1.37.0 * Bump c/storage, c/image, c/common for v1.37.0 * AddAndCopyOptions: add CertPath, InsecureSkipTLSVerify, Retry fields * Add PrependedLinkedLayers/AppendedLinkedLayers to CommitOptions * integration tests: teach starthttpd() about TLS and pid files * "build with basename resolving user arg" tests: correct ARG use * bud-multiple-platform-no-run test: correct ARG use * imagebuildah: always have default values for $TARGET... args ready * bump github.com/openshift/imagebuilder to v1.2.14 * fix(deps): update module github.com/docker/docker to v27.1.1+incompatible * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.1 * fix(deps): update module github.com/docker/docker to v27.1.0+incompatible * CI: use local registry, part 2 of 2 * CI: use local registry, part 1 of 2 * fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.1 * Revert "fix(deps): update github.com/containers/image/v5 to v5.31.1" * Replace libimage.LookupReferenceFunc with the manifests version * conformance tests: enable testing CompatVolumes * conformance tests: add a test that tries to chown a volume * imagebuildah: make traditional volume handling not the default * StageExecutor.prepare(): mark base image volumes for preservation * fix(deps): update module github.com/containers/image/v5 to v5.31.1 * Vendor in latest containers/(common, storage, image) * fix(deps): update module golang.org/x/term to v0.22.0 * fix(deps): update module golang.org/x/sys to v0.22.0 * fix(deps): update golang.org/x/exp digest to 7f521ea * fix(deps): update github.com/containers/luksy digest to a8846e2 * imagebuildah.StageExecutor.Copy(): reject new flags for now * bump github.com/openshift/imagebuilder to v1.2.11 * Rework parsing of --pull flags * fix(deps): update module github.com/containers/image/v5 to v5.31.1 * imagebuildah.StageExecutor.prepare(): log the --platform flag * CI VMs: bump * buildah copy: preserve owner info with --from= a container or image * conformance tests: enable testing CompatSetParent * containerImageRef.NewImageSource(): move the FROM comment to first * commit: set "parent" for docker format only when requested * Update godoc for Builder.EnsureContainerPathAs * fix(deps): update module github.com/spf13/cobra to v1.8.1 * fix(deps): update module github.com/containernetworking/cni to v1.2.0 * fix(deps): update module github.com/opencontainers/runc to v1.1.13 * Change default for podman build to --pull missing * fix(deps): update module github.com/containers/common to v0.59.1 * Clarify definition of --pull options * buildah: fix a nil pointer reference on FreeBSD * Use /var/tmp for $TMPDIR for vfs conformance jobs * Cirrus: run `df` during job setup * conformance: use quay.io/libpod/centos:7 instead of centos:8 * Stop setting "parent" in docker format * conformance: check if workdir trims path separator suffixes * push integration test: pass password to docker login via stdin * Re-enable the "copy with chown" conformance test * healthcheck: Add support for `--start-interval` * fix(deps): update module github.com/docker/docker to v26.1.4+incompatible * fix(deps): update module github.com/containerd/containerd to v1.7.18 * tests: set _CONTAINERS_USERNS_CONFIGURED=done for libnetwork * Cross-build on Fedora * Drop copyStringSlice() and copyStringStringMap() * fix(deps): update module golang.org/x/crypto to v0.24.0 * fix(deps): update module github.com/openshift/imagebuilder to v1.2.10 * Provide an uptime_netbsd.go * Spell unix as "!windows" * Add netbsd to lists-of-OSes * fix(deps): update golang.org/x/exp digest to fd00a4e * [skip-ci] Packit: enable c10s downstream sync * CI VMs: bump, to debian with cgroups v2 * Document when BlobDirectory is overridden * fix secret mounts for env vars when using chroot isolation * Change to take a types.ImageReference arg * imagebuildah: Support custom image reference lookup for cache push/pull * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.0 * Bump to v1.37.0-dev * Bump to v1.36.0 * build: be more selective about specifying the default OS * Bump to c/common v0.59.0 * Fix buildah prune --help showing the same example twice * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.18.0 * fix(deps): update module github.com/containers/image/v5 to v5.31.0 * CI: Clarify Debian use for conformance tests * bud tests: fix breakage when vendoring into podman * Integration tests: fake up a replacement for nixery.dev/shell * copierWithSubprocess(): try to capture stderr on io.ErrClosedPipe * Don't expand RUN heredocs ourselves, let the shell do it * Don't leak temp files on failures * Add release note template to split dependency chores * fix CentOS/RHEL build - no BATS there * fix(deps): update module github.com/containers/luksy to v0.0.0-20240506205542-84b50f50f3ee * Address CVE-2024-3727 * chore(deps): update module github.com/opencontainers/runtime-spec to v1.2.0 * Builder.cdiSetupDevicesInSpecdefConfig(): use configured CDI dirs * Setting --arch should set the TARGETARCH build arg * fix(deps): update module golang.org/x/exp to v0.0.0-20240416160154-fe59bbe5cc7f * [CI:DOCS] Add link to Buildah image page to README.md * Don't set GOTOOLCHAIN=local * fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.5 * Makefile: set GOTOOLCHAIN=local * Integration tests: switch some base images * containerImageRef.NewImageSource: merge the tar filters * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.2 * fix(deps): update module github.com/containers/luksy to v0.0.0-20240408185936-afd8e7619947 * Disable packit builds for centos-stream+epel-next-8 * Makefile: add missing files to $(SOURCES) * CI VMs: bump to new versions with tmpfs /tmp * chore(deps): update module golang.org/x/net to v0.23.0 [security] * integration test: handle new labels in "bud and test --unsetlabel" * Switch packit configuration to use epel-9-$arch ... * Give unit tests a bit more time * Integration tests: remove a couple of duplicated tests * Integration tests: whitespace tweaks * Integration tests: don't remove images at start or end of test * Integration tests: use cached images more * Integration tests _prefetch: use registry configs * internal: use fileutils.(Le|E)xists * pkg/parse: use fileutils.(Le|E)xists * buildah: use fileutils.(Le|E)xists * chroot: use fileutils.(Le|E)xists * vendor: update containers/(common|storage) * Fix issue/pr lock workflow * [CI:DOCS] Add golang 1.21 update warning * heredoc: honor inline COPY irrespective of ignorefiles * Update install.md * source-push: add support for --digestfile * Fix caching when mounting a cached stage with COPY/ADD * fix(deps): update github.com/containers/luksy digest to 3d2cf0e * Makefile: softcode `strip`, use it from env var * Man page updates * Add support for passing CDI specs to --device * Update comments on some API objects * pkg/parse.DeviceFromPath(): dereference src symlinks * Makefile - instead of calling `as` directly, use it from env var * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1 * CI: bump VMs * fix(deps): update module github.com/docker/docker to v25.0.5+incompatible * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.0 * Change RUN to comment in bud.bats * Stop rebasing renovate PRs automatically * Update renovate validation image * CVE-2024-1753 container escape fix * correctly configure /etc/hosts and resolv.conf when using network * buildah: refactor resolv/hosts setup. * rename the hostFile var to reflect the value better * vendor latest c/common * [skip-ci] rpm: use go-rpm-macros supported vendoring * Update docs/buildah-add.1.md * fix(deps): update module github.com/onsi/ginkgo/v2 to v2.16.0 * fix(deps): update module github.com/docker/docker to v25.0.4+incompatible * fix(deps): update module github.com/containers/ocicrypt to v1.1.10 * chore(deps): update module gopkg.in/go-jose/go-jose.v2 to v2.6.3 [security] * chore(deps): update module github.com/go-jose/go-jose/v3 to v3.0.3 [security] * Bump google.golang.org/protobuf to v1.33.0 * fix links to containerignore doc * [skip-ci] Makefile: update rpm target * pr-should-include-tests: use GitHub label, not commit text * tests: enable pasta tests * [CI:DOCS] Migrate buildah container image * Update .gitignore * Bump to v1.36.0-dev ++++ rust1.91: - switch to use gcc15, as SLFO 1.2 does not have gcc14. - fix cmake problems on SLE15 ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ chromium: - Chromium 142.0.7444.134 (boo#1253089): * CVE-2025-12725: Out of bounds write in WebGPU * CVE-2025-12726: Inappropriate implementation in Views * CVE-2025-12727: Inappropriate implementation in V8 * CVE-2025-12728: Inappropriate implementation in Omnibox * CVE-2025-12729: Inappropriate implementation in Omnibox ++++ kernel-64kb: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-64kb: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-default: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-default: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-rt: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-rt: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ dtb-aarch64: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ dtb-aarch64: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ rabbitmq-server: - Update to 4.1.5 * Highlights Khepri, an alternative schema data store developed to replace Mnesia, has matured and is now fully supported (it previously was an experimental feature) AMQP 1.0 is now a core protocol that is always enabled. Its plugin is now a no-op that only exists to simplify upgrades. The AMQP 1.0 implementation is now significantly more efficient: its peak throughput is more than double than that of 3.13.x on some workloads Efficient sub-linear quorum queue recovery on node startup using checkpoints Quorum queues now support priorities (but not exactly the same way as classic queues) AMQP 1.0 clients now can manage topologies similarly to how AMQP 0-9-1 clients do it The AMQP 1.0 convention (address format) used for interacting with with AMQP 0-9-1 entities is now easier to reason about Mirroring (replication) of classic queues was removed after several years of deprecation. For replicated messaging data types, use quorum queues and/or streams. Non-replicated classic queues remain and their development continues Classic queue storage efficiency improvements, in particular recovery time and storage of multi-MiB messages Nodes with multiple enabled plugins and little on disk data to recover now start up to 20-30% faster New exchange type: Local Random Exchange Quorum queue log reads are now offloaded to channels (sessions, connections). Initial Support for AMQP 1.0 Filter Expressions Feature Flags Quality of Life Improvements rabbitmqadmin v2 * Breaking Changes Before a client connection can negotiate a maximum frame size (frame_max), it must authenticate successfully. Before the authenticated phase, a special lower frame_max value is used. With this release, the value was increased from the original 4096 bytes to 8192 to accommodate larger JWT tokens. amqplib is a popular client library that has been using a low frame_max default of 4096. Its users must upgrade to a compatible version (starting with 0.10.7) or explicitly use a higher frame_max. amqplib versions older than 0.10.7 will not be able to connect to RabbitMQ 4.1.0 and later versions due to the initial AMQP 0-9-1 maximum frame size increase covered above. The default MQTT Maximum Packet Size changed from 256 MiB to 16 MiB. The following rabbitmq.conf settings are unsupported: cluster_formation.etcd.ssl_options.fail_if_no_peer_cert cluster_formation.etcd.ssl_options.dh cluster_formation.etcd.ssl_options.dhfile Classic Queues is Now a Non-Replicated Queue Type Quorum Queues Now Have a Default Redelivery Limit Up to RabbitMQ 3.13, when an AMQP 0.9.1 client (re-)published a message to RabbitMQ, RabbitMQ interpreted the AMQP 0.9.1 x-death header in the published message's basic_message.content.properties.headers field. RabbitMQ 4.x will not interpret this x-death header anymore when clients (re-)publish a message. CQv1 Storage Implementation was Removed Settings cluster_formation.randomized_startup_delay_range.* were Removed Several Disk I/O-Related Metrics were Removed Default Maximum Message Size Reduced to 16 MiB RabbitMQ 3.13 rabbitmq.conf setting rabbitmq_amqp1_0.default_vhost is unsupported in RabbitMQ 4.0. RabbitMQ 3.13 rabbitmq.conf settings mqtt.default_user, mqtt.default_password, and amqp1_0.default_user are unsupported in RabbitMQ 4.0. Starting with Erlang 26, client side TLS peer certificate chain verification settings are enabled by default in most contexts: from federation links to shovels to TLS-enabled LDAP client connections. RabbitMQ Shovels will be able connect to a RabbitMQ 4.0 node via AMQP 1.0 only when the Shovel runs on a RabbitMQ node >= 3.13.7. * See https://github.com/rabbitmq/rabbitmq-server/releases/tag/v4.0.1 * and https://github.com/rabbitmq/rabbitmq-server/releases/tag/v4.1.0 for more info - Remove fix-CVE-2025-30219.patch fixed upstream ++++ kernel-source: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-source: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-docs: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-docs: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-kvmsmall: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-kvmsmall: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-obs-build: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-obs-build: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-obs-qa: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-obs-qa: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-syms: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-syms: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ kernel-zfcpdump: - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d ++++ kernel-zfcpdump: - nexthop: Forbid FDB status change while nexthop is in a group (CVE-2025-39980 bsc#1252063). - commit dada308 - mm/ksm: fix flag-dropping behavior in ksm_madvise (CVE-2025-40040 bsc#1252780). - commit 095dc3d - serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). - PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (git-fixes). - kABI: PCI: qcom: Add equalization settings for 8.0 GT/s and 32.0 GT/s (kabi git-fixes). - kabi/severities: add qcom_pcie_common_set_16gt_equalization() It's internal to dwc, noone is supposed to rely on it. Fixes: Export 'qcom_pcie_common_set_16gt_equalization' has been removed - PCI: Ensure relaxed tail alignment does not increase min_align (git-fixes). - PCI: Test for bit underflow in pcie_set_readrq() (git-fixes). - PCI: Add pci_resource_num() helper (git-fixes). - PCI: Use min_align, not unrelated add_align, for size0 (git-fixes). - commit d635c02 ++++ libHBAAPI2: - use %license tag for COPYING [bsc#1252158] ++++ maven-plugin-report-plugin: - Add the maven-plugin-report-plugin to the _multibuild file - Initial packaging of the maven-plugin-report-plugin 3.15.2 ++++ mdadm: - Split off the Software RAID HOWTO into a -doc package - Update to version 4.4+29.gf8bb524b: * fix race between mdcheck_start.service and mdcheck_continue.service (bsc#1243443, bsc#1248097) * various fixes for mdcheck (bsc#1248097) * mdadm_env.sh: ignore MDADM_RAIDDEVICES if MDADM_SCAN is set (bsc#1229997) - Upstream bug fixes since 4.4 (bsc#1253060) * mdadm: add attribute nonstring for signature * super-ddf: Prevent crash when handling DDF metadata * platform-intel: Disable legacy option ROM scan on UEFI machines * mdadm: fix --grow with --add for linear * mdadm/raid6check: add xmalloc.h to raid6check.c * Coverity fixes resources leaks * udev: persist properties of MD devices after switch_root - _service: switch to tar_scm for better interoperabity with SLFO. ++++ mdadm: - Split off the Software RAID HOWTO into a -doc package - Update to version 4.4+29.gf8bb524b: * fix race between mdcheck_start.service and mdcheck_continue.service (bsc#1243443, bsc#1248097) * various fixes for mdcheck (bsc#1248097) * mdadm_env.sh: ignore MDADM_RAIDDEVICES if MDADM_SCAN is set (bsc#1229997) - Upstream bug fixes since 4.4 (bsc#1253060) * mdadm: add attribute nonstring for signature * super-ddf: Prevent crash when handling DDF metadata * platform-intel: Disable legacy option ROM scan on UEFI machines * mdadm: fix --grow with --add for linear * mdadm/raid6check: add xmalloc.h to raid6check.c * Coverity fixes resources leaks * udev: persist properties of MD devices after switch_root - _service: switch to tar_scm for better interoperabity with SLFO. ++++ python-josepy: - Update to 2.2.0: * Added support for Python 3.14. * Dropped support for Python 3.9.0 and 3.9.1 for compatibility with newer versions of the cryptography Python package. Python 3.9.2+ is still supported. - Clean up {Build,}Requires. ++++ squid: - CVE-2025-62168.patch: Proxy auth data visible to scripts (bsc#1252281, CVE-2025-62168) ++++ suse-migration-services: - Bump version: 2.1.26 → 2.1.27 - Bump Migration changelog version: 2.1.27 ++++ tomcat: - Update to Tomcat 9.0.111 * Fixed CVEs: + CVE-2025-55752: directory traversal via rewrite with possible RCE if PUT is enabled (bsc#1252753) + CVE-2025-55754: Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat (bsc#1252905) + CVE-2025-61795: temporary copies during the processing of multipart upload can lead to a denial of service (bsc#1252756) * Catalina + Fix: Log warnings when the SSO configuration does not comply with the documentation. (remm) + Update: Deprecate the RemoteAddrFilter and RemoteAddValve in favour of the RemoteCIDRFilter and RemoteCIDRValve. (markt) + Fix: 69837: Fix corruption of the class path generated by the Loader when running on Windows. (markt) + Fix: Reject requests that map to invalid Windows file names earlier. (markt) + Fix: 69839: Ensure that changes to session IDs (typically after authentication) are promulgated to the SSO Valve to ensure that SSO entries are fully clean-up on session expiration. Patch provided by Kim Johan Andersson. (markt) + Fix: Fix a race condition in the creation of the storage location for the FileStore. (markt) + Update: Change the digest used to calculate strong ETags (if enabled) for the default Servlet from SHA-1 to SHA-256 to align with the recommendation in RFC 9110 that hash functions used to generate strong ETags should be collision resistant. (markt) + Fix: Correct a regression in the fix for 69781 that broke FileStore. (markt) + Fix: HTTP methods are case-sensitive so always use case sensitive comparisons when comparing HTTP methods. (markt) + Fix: 69814: Ensure that HttpSession.isNew() returns false once the client has joined the session. (markt) + Fix: Further performance improvements for ParameterMap. (jengebr/markt) + Fix: Fix a case-sensitivity issue in the trailer header allow list. (markt) + Fix: Be proactive in cleaning up temporary files after a failed multi-part upload rather than waiting for GC to do it. (markt) + Code: Remove a number of unnecessary packages from the catalina-deployer.jar. (markt) + Fix: 69781: Fix concurrent access issues in the session FileStore implementation that were causing lost sessions when the store was used with the PersistentValve. Based on pull request #882 by Aaron Ogburn. (markt) + Fix: Fix handling of QSA and QSD flags in RewriteValve. (markt) * Cluster + Fix: Prevent the channel configuration (sender, receiver, membership service) from being changed unless the channel is fully stopped. (markt) + Fix: Handle spurious wake-ups during leader election for NonBlockingCoordinator. (markt) + Fix: Handle spurious wake-ups during sending of messages by RpcChannel. (markt) * Coyote + Fix: 69848: Fix copy/paste errors in 9.0.110 that meant DELETE requests received via the AJP connector were processed as OPTIONS requests and PROPFIND requests were processed as TRACE. (markt) + Update: Add specific certificate selection code for TLS 1.3 supporting post quantum cryptography. Certificates defined with type MLDSA will be selected depending on the TLS client hello. (remm) + Update: Add groups attribute on SSLHostConfig allowing to restrict which groups can be enabled on the SSL engine. (remm) + Add: Optimize the conversion of HTTP method from byte form to String form. (markt) + Fix: Store HTTP request headers using the original case for the header name rather than forcing it to lower case. (markt) + Fix: 69762: Additional overflow fix for HPACK decoding of integers. Pull request #880 by Chenjp. (markt) + Fix: Ensure keys are handed out to OpenSSL even if PEMFile fails to process it, with appropriate logging. (remm) + Fix: Add new ML-DSA key algorithm to PEMFile and improve reporting when reading a key fails. (remm) + Fix: Fix possible early timeouts for network operations caused by a spurious wake-up of a waiting thread. Found by Coverity Scan. (markt) * Web applications + Fix: Documentation. Clarify the purpose of the maxPostSize attribute of the Connector element. (markt) + Fix: Avoid NPE in manager webapp displaying certificate information. (remm) * Websocket + Fix: 69845: When using permessage-deflate with Java 25 onwards, handle the underlying Inflater and/or Deflater throwing IllegalStateException when closed rather than NullPointerException as they do in Java 24 and earlier. (markt) * Other + Update: Update Byte Buddy to 1.17.7. (markt) + Update: Update Checkstyle to 11.1.0. (markt) + Update: Update SpotBugs to 4.9.6. (markt) + Update: Update Jsign to 7.2. (markt) + Add: Improvements to Russian translations provided by usmazat. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations provided by tak7iji. (markt) + Update: Minor refactoring in JULI loggers. Patch provided by minjund. (schultz) + Code: Review logging and include the full stack trace and exception message by default rather then just the exception message when logging an error or warning in response to an exception. (markt) + Add: Add escaping to log formatters to align with JSON formatter. (markt) + Update: Update Checkstyle to 11.0.0. (markt) ++++ tomcat11: - Update to Tomcat 11.0.13 * Fixed CVEs: + CVE-2025-55752: directory traversal via rewrite with possible RCE if PUT is enabled (bsc#1252753) + CVE-2025-55754: Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat (bsc#1252905) + CVE-2025-61795: temporary copies during the processing of multipart upload can lead to a denial of service (bsc#1252756) * Catalina + Add: Add CIDR support for the configuration of internal and trusted proxies for the RemoteIpFilter and RemoteIpValve. Configuration via regular expression has been deprecated and will be removed in Tomcat 12. (markt) + Fix: Log warnings when the SSO configuration does not comply with the documentation. (remm) + Update: Deprecate the RemoteAddrFilter and RemoteAddValve in favour of the RemoteCIDRFilter and RemoteCIDRValve. (markt) + Fix: 69837: Fix corruption of the class path generated by the Loader when running on Windows. (markt) + Fix: Reject requests that map to invalid Windows file names earlier. (markt) + Fix: 69839: Ensure that changes to session IDs (typically after authentication) are promulgated to the SSO Valve to ensure that SSO entries are fully clean-up on session expiration. Patch provided by Kim Johan Andersson. (markt) + Fix: Fix a race condition in the creation of the storage location for the FileStore. (markt) + Update: Change the digest used to calculate strong ETags (if enabled) for the default Servlet from SHA-1 to SHA-256 to align with the recommendation in RFC 9110 that hash functions used to generate strong ETags should be collision resistant. (markt) + Fix: HTTP methods are case-sensitive so always use case sensitive comparisons when comparing HTTP methods. (markt) + Fix: 69814: Ensure that HttpSession.isNew() returns false once the client has joined the session. (markt) + Fix: Further performance improvements for ParameterMap. (jengebr/markt) + Code: Refactor access log time stamps to be based on the Instant request processing starts. (markt) + Fix: Fix a case-sensitivity issue in the trailer header allow list. (markt) + Fix: Be proactive in cleaning up temporary files after a failed multi-part upload rather than waiting for GC to do it. (markt) + Code: Remove a number of unnecessary packages from the catalina-deployer.jar. (markt) + Fix: 69781: Fix concurrent access issues in the session FileStore implementation that were causing lost sessions when the store was used with the PersistentValve. Based on pull request #882 by Aaron Ogburn. (markt) + Code: Refactor WebResource locking to use the new KeyedReentrantReadWriteLock. (markt) + Fix: Fix handling of QSA and QSD flags in RewriteValve. (markt) * Cluster + Fix: Prevent the channel configuration (sender, receiver, membership service) from being changed unless the channel is fully stopped. (markt) + Fix: Handle spurious wake-ups during leader election for NonBlockingCoordinator. (markt) + Fix: Handle spurious wake-ups during sending of messages by RpcChannel. (markt) * Coyote + Fix: 69836: Incorrect processing of partitioned setting when generating session cookie. Patch submitted by Marc Pynaert. (remm) + Fix: 69848: Fix copy/paste errors in 11.0.12 that meant DELETE requests received via the AJP connector were processed as OPTIONS requests and PROPFIND requests were processed as TRACE. (markt) + Update: Add specific certificate selection code for TLS 1.3 supporting post quantum cryptography. Certificates defined with type MLDSA will be selected depending on the TLS client hello. (remm) + Update: Add groups attribute on SSLHostConfig allowing to restrict which groups can be enabled on the SSL engine. (remm) + Add: Optimize the conversion of HTTP method from byte form to String form. (markt) + Fix: Store HTTP request headers using the original case for the header name rather than forcing it to lower case. (markt) + Fix: 69762: Additional overflow fix for HPACK decoding of integers. Pull request #880 by Chenjp. (markt) + Fix: Ensure keys are handed out to OpenSSL even if PEMFile fails to process it, with appropriate logging. (remm) + Fix: Add new ML-DSA key algorithm to PEMFile and improve reporting when reading a key fails. (remm) + Fix: Fix possible early timeouts for network operations caused by a spurious wake-up of a waiting thread. Found by Coverity Scan. (markt) * Web applications + Fix: Documentation. Clarify the purpose of the maxPostSize attribute of the Connector element. (markt) + Fix: Avoid NPE in manager webapp displaying certificate information. (remm) * Websocket + Fix: 69845: When using permessage-deflate with Java 25 onwards, handle the underlying Inflater and/or Deflater throwing IllegalStateException when closed rather than NullPointerException as they do in Java 24 and earlier. (markt) * Other + Fix: 69847: Remove remaining references to the org.apache.tomcat.util.codec.binary package which has been deleted. (markt) + Update: Update Byte Buddy to 1.17.7. (markt) + Update: Update Checkstyle to 11.1.0. (markt) + Update: Update SpotBugs to 4.9.6. (markt) + Update: Update Jsign to 7.2. (markt) + Add: Improvements to Russian translations provided by usmazat. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations provided by tak7iji. (markt) + Update: Minor refactoring in JULI loggers. Patch provided by minjund. (schultz) + Code: Review logging and include the full stack trace and exception message by default rather then just the exception message when logging an error or warning in response to an exception. (markt) + Add: Add escaping to log formatters to align with JSON formatter. (markt) + Update: Update Checkstyle to 11.0.0. (markt) ------------------------------------------------------------------ ------------------ 2025-11-5 - Nov 5 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-64kb: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-default: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-default: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-rt: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-rt: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ dtb-aarch64: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ dtb-aarch64: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ go1.24: - go1.24.10 (released 2025-11-05) includes fixes to the encoding/pem and net/url packages. Refs boo#1236217 go1.24 release tracking * go#75831 net/url: ipv4 mapped ipv6 addresses should be valid in square brackets * go#75951 encoding/pem: regression when decoding blocks with leading garbage * go#76028 pem/encoding: malformed line endings can cause panics - Packaging improvements: * Remove net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch No longer needed with go#75831 in latest upstream release ++++ go1.24: - go1.24.10 (released 2025-11-05) includes fixes to the encoding/pem and net/url packages. Refs boo#1236217 go1.24 release tracking * go#75831 net/url: ipv4 mapped ipv6 addresses should be valid in square brackets * go#75951 encoding/pem: regression when decoding blocks with leading garbage * go#76028 pem/encoding: malformed line endings can cause panics - Packaging improvements: * Remove net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch No longer needed with go#75831 in latest upstream release ++++ go1.25: - go1.25.4 (released 2025-11-05) includes fixes to the compiler, the runtime, and the crypto/subtle, encoding/pem, net/url, and os packages. Refs boo#1244485 go1.25 release tracking * go#75480 cmd/link: linker panic and relocation errors with complex generics inlining * go#75775 runtime: build fails when run via QEMU for linux/amd64 running on linux/arm64 * go#75790 crypto/internal/fips140/subtle: Go 1.25 subtle.xorBytes panic on MIPS * go#75832 net/url: ipv4 mapped ipv6 addresses should be valid in square brackets * go#75952 encoding/pem: regression when decoding blocks with leading garbage * go#75989 os: on windows RemoveAll removing directories containing read-only files errors with unlinkat ... Access is denied * go#76010 cmd/compile: any(func(){})==any(func(){}) does not panic but should * go#76029 pem/encoding: malformed line endings can cause panics - Packaging improvements: * Remove net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch No longer needed with go#75832 in latest upstream release ++++ go1.25: - go1.25.4 (released 2025-11-05) includes fixes to the compiler, the runtime, and the crypto/subtle, encoding/pem, net/url, and os packages. Refs boo#1244485 go1.25 release tracking * go#75480 cmd/link: linker panic and relocation errors with complex generics inlining * go#75775 runtime: build fails when run via QEMU for linux/amd64 running on linux/arm64 * go#75790 crypto/internal/fips140/subtle: Go 1.25 subtle.xorBytes panic on MIPS * go#75832 net/url: ipv4 mapped ipv6 addresses should be valid in square brackets * go#75952 encoding/pem: regression when decoding blocks with leading garbage * go#75989 os: on windows RemoveAll removing directories containing read-only files errors with unlinkat ... Access is denied * go#76010 cmd/compile: any(func(){})==any(func(){}) does not panic but should * go#76029 pem/encoding: malformed line endings can cause panics - Packaging improvements: * Remove net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch No longer needed with go#75832 in latest upstream release ++++ kernel-source: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-source: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-docs: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-docs: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-kvmsmall: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-kvmsmall: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-obs-build: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-obs-build: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-obs-qa: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-obs-qa: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-syms: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-syms: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-zfcpdump: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ kernel-zfcpdump: - cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166). - cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166). - commit d4c3a1b - cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166). - commit 9093c25 - nbd: restrict sockets to TCP and UDP (bsc#1252774 CVE-2025-40080). - commit 3fbbb49 - kernel-subpackage-spec: Do not doubly-sign modules (bsc#1251930). - commit 0f034b6 - RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes) - commit 6ea0097 - RDMA/hns: Fix the modification of max_send_sge (git-fixes) - commit f143d8d - RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes) - commit 61f6ae6 - RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes) - commit be2c8f8 - RDMA/irdma: Fix SD index calculation (git-fixes) - commit 0aad166 - RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes) - commit 0f46cf0 ++++ lz4: - CVE-2025-62813 was rejected [bsc#1252557] - deleted patches * lz4-CVE-2025-62813.patch ++++ libnbd: - bsc#1253059 - libnbd: Unsanitized hostnames in nbd+ssh URIs allow remote execution uri-Sanitize-user-provided-hostnames.patch ++++ podman: - Add patch for CVE-2025-31133,CVE-2025-52565,CVE-2025-52881 (bsc#1252376): * 0005-CVE-2025-52881-backport-subset-of-patch-from-runc.patch - Add patch for bsc#1252543: * 0004-CVE-2025-9566-kube-play-don-t-follow-volume-symlinks.patch - Rebase patches: * 0003-CVE-2025-6032-machine-init-fix-tls-check.patch * 0002-Fix-Remove-appending-rw-as-the-default-mount-option.patch * 0001-CVE-2025-22869-ssh-limit-the-size-of-the-internal-pa.patch ++++ salt: - Fix payload signature verification on Tumbleweed (bsc#1251776) - Fix broken symlink on migration to Leap 16.0 (bsc#1250755) - Use versioned python interpreter for salt-ssh - Fix known_hosts error on gitfs (bsc#1250520) (bsc#1227207) - Add python3.11 as preferable for salt-ssh to avoid tests fails - Make test_pillar_timeout test more reliable - Modify README and other doc files for openSUSE - Set python-CherryPy as required for python-salt-testsuite (#115) - Revert require M2Crypto >= 0.44.0 for SUSE Family distros - This reverts commit aa40615dcf7a15325ef71bbc09a5423ce512491d. - Improve SL Micro 6.2 detection with grains - Fix functional.states.test_user for SLES 16 and Micro systems - Fix the tests failing on AlmaLinux 10 and other clones - Added: * do-not-break-signature-verification-on-latest-m2cryp.patch * use-versioned-python-interpreter-for-salt-ssh.patch * allow-libgit2-to-guess-sysdir-homedir-successfully-b.patch * add-python3.11-as-preferable-for-salt-ssh-to-avoid-t.patch * even-more-reliable-pillar-timeout-test.patch * modify-readme-for-opensuse-728.patch * improve-sl-micro-6.2-detection-with-grains.patch * fix-functional.states.test_user-for-sles-16-and-micr.patch * fix-the-tests-failing-on-almalinux-10-and-other-clon.patch ++++ salt-test: - Fix payload signature verification on Tumbleweed (bsc#1251776) - Fix broken symlink on migration to Leap 16.0 (bsc#1250755) - Use versioned python interpreter for salt-ssh - Fix known_hosts error on gitfs (bsc#1250520) (bsc#1227207) - Add python3.11 as preferable for salt-ssh to avoid tests fails - Make test_pillar_timeout test more reliable - Modify README and other doc files for openSUSE - Set python-CherryPy as required for python-salt-testsuite (#115) - Revert require M2Crypto >= 0.44.0 for SUSE Family distros - This reverts commit aa40615dcf7a15325ef71bbc09a5423ce512491d. - Improve SL Micro 6.2 detection with grains - Fix functional.states.test_user for SLES 16 and Micro systems - Fix the tests failing on AlmaLinux 10 and other clones - Added: * do-not-break-signature-verification-on-latest-m2cryp.patch * use-versioned-python-interpreter-for-salt-ssh.patch * allow-libgit2-to-guess-sysdir-homedir-successfully-b.patch * add-python3.11-as-preferable-for-salt-ssh-to-avoid-t.patch * even-more-reliable-pillar-timeout-test.patch * modify-readme-for-opensuse-728.patch * improve-sl-micro-6.2-detection-with-grains.patch * fix-functional.states.test_user-for-sles-16-and-micr.patch * fix-the-tests-failing-on-almalinux-10-and-other-clon.patch ++++ runc: - Update to runc v1.3.3. Upstream changelog is available from . bsc#1252232 * CVE-2025-31133 * CVE-2025-52565 * CVE-2025-52881 - Remove upstreamed patches for bsc#1252232: - 2025-11-05-CVEs.patch ++++ suse-migration-services: - Refactor mount_system service So far the mount_system unit run through all disk devices and uses the first one providing a system with an fstab file. This concept is weak and fails on machines with multiple linux OS disks attached. This commit refactors mount_system such that it reads the migration_target= variable from the kernel cmdline. The kernel cmdline gets this information added by either the grub.d/99_migration menuentry or via the run_migration kexec method. The migration_target= variable is expected to contain the rootfs UUID value of the host that should be migrated. This is a unique identifier and as such cannot be confused by other devices attached to the system. ------------------------------------------------------------------ ------------------ 2025-11-4 - Nov 4 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaThunderbird: - Mozilla Thunderbird 140.4 * changed: Account Hub is now disabled by default for second email account (bmo#1992027) * changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 (bmo#1952100) * fixed: Users could not read mail signed with OpenPGP v6 and PQC keys (bmo#1986845) * fixed: Image preview in Insert Image dialog failed with CSP error for web resources (bmo#1989392) * fixed: Emptying trash on exit did not work with some providers (bmo#1975147) * fixed: Thunderbird could crash when applying filters (bmo#1987880) * fixed: Users were unable to override expired mail server certificate (bmo#1979323) * fixed: Opening Website header link in RSS feed incorrectly re-encoded URL parameters (bmo#1971035) * fixed: Security fixes MFSA 2025-85 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 - Replace mozilla-bmo998749.patch with upstreams version - Add build_limit for s390x on SLE16 (bsc#1247774) ++++ kernel-64kb: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-64kb: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-default: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-default: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-rt: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-rt: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ dtb-aarch64: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ dtb-aarch64: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-source: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-source: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-docs: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-docs: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-kvmsmall: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-kvmsmall: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-livepatch-SLE16_Update_2: - New branch for SLE16_Update_2 - commit bc96edf ++++ kernel-livepatch-SLE16_Update_2: - New branch for SLE16_Update_2 - commit bc96edf ++++ kernel-livepatch-SLE16-RT_Update_2: - New branch for SLE16-RT_Update_2 - commit 4cf875c ++++ kernel-obs-build: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-obs-build: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-obs-qa: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-obs-qa: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-syms: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-syms: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-zfcpdump: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ kernel-zfcpdump: - Revert "e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898" This reverts commit c8a67ee47d80a407b3a0277b35ca59f2d01f3488. - commit 379dc19 - vhost: vringh: Modify the return value check (CVE-2025-40051 bsc#1252858). - commit 0f5b967 - btrfs: fix the incorrect max_bytes value for find_lock_delalloc_range() (git-fixes). - commit 6669879 ++++ python313-core: - Add CVE-2025-8291-consistency-zip64.patch which checks consistency of the zip64 end of central directory record, and preventing obfuscation of the payload, i.e., you scanning for malicious content in a ZIP file with one ZIP parser (let's say a Rust one) then unpack it in production with another (e.g., the Python one) and get malicious content that the other parser did not see (CVE-2025-8291, bsc#1251305) - Readjust patches while synchronizing between openSUSE and SLE trees: - F00251-change-user-install-location.patch - doc-py38-to-py36.patch - gh126985-mv-pyvenv.cfg2getpath.patch ++++ python313-nogil-nogil-core: - Add CVE-2025-8291-consistency-zip64.patch which checks consistency of the zip64 end of central directory record, and preventing obfuscation of the payload, i.e., you scanning for malicious content in a ZIP file with one ZIP parser (let's say a Rust one) then unpack it in production with another (e.g., the Python one) and get malicious content that the other parser did not see (CVE-2025-8291, bsc#1251305) - Readjust patches while synchronizing between openSUSE and SLE trees: - F00251-change-user-install-location.patch - doc-py38-to-py36.patch - gh126985-mv-pyvenv.cfg2getpath.patch ++++ maven: - Added patch: * 0001-Set-Guice-class-loading-to-CHILD-avoid-using-termina.patch + Set Guice class loading to CHILD: avoid using terminally deprecated methods. Default Guice class loading uses a terminally deprecated JDK memory-access classes. ++++ mdadm: - _service: pull from github.com/openSUSE/mdadm, patches now managed in git * delete 0010-mdopen-add-sbin-path-to-env-PATH-when-call-system-mo.patch * delete 1000-Revert-mdmonitor-Abandon-custom-configuration-files.patch * delete 1001-display-timeout-status.patch * delete 1002-OnCalendar-format-fix-of-mdcheck_start-timer.patch * delete 1003-mdadm-treat-the-Dell-softraid-array-as-local-array.patch * delete 1004-call-mdadm_env.sh-from-usr-libexec-mdadm.patch * delete 1005-mdadm-enable-Intel-Alderlake-RSTe-configuration.patch * delete 1006-imsm-Fix-RAID0-to-RAID10-migration.patch * delete 1007-mdadm-allow-any-valid-minor-number-in-md-device-name.patch * delete 1008-mdmonitor-use-MAILFROM-to-set-sendmail-envelope-send.patch - New versioning scheme: add tag offset and git commit from openSUSE/mdadm repo ++++ mdadm: - _service: pull from github.com/openSUSE/mdadm, patches now managed in git * delete 0010-mdopen-add-sbin-path-to-env-PATH-when-call-system-mo.patch * delete 1000-Revert-mdmonitor-Abandon-custom-configuration-files.patch * delete 1001-display-timeout-status.patch * delete 1002-OnCalendar-format-fix-of-mdcheck_start-timer.patch * delete 1003-mdadm-treat-the-Dell-softraid-array-as-local-array.patch * delete 1004-call-mdadm_env.sh-from-usr-libexec-mdadm.patch * delete 1005-mdadm-enable-Intel-Alderlake-RSTe-configuration.patch * delete 1006-imsm-Fix-RAID0-to-RAID10-migration.patch * delete 1007-mdadm-allow-any-valid-minor-number-in-md-device-name.patch * delete 1008-mdmonitor-use-MAILFROM-to-set-sendmail-envelope-send.patch - New versioning scheme: add tag offset and git commit from openSUSE/mdadm repo ++++ nvidia-open-driver-G06-signed-cuda: - back to 580.95.05 on aarch64, since userspace drivers have not been updated for this platform ++++ nvidia-open-driver-G06-signed: - back to 580.95.05 on aarch64, since userspace drivers have not been updated for this platform ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ openQA: - Update to version 5.1762193001.2f6e71ca: * Potentially improve stability of `t/ui/16-tests_job_next_previous.t` * Avoid failing check in `t/16-utils-runcmd.t` * README: Add deepwiki badge * Dependency cron 2025-10-27 * Retry image optimizations ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ os-autoinst: - Update to version 5.1761723693.2b88807: * Propagate C++ exceptions to Perl in image write function * Add support NICPCIADDR variable to QEMU backend * Remove test which causes unhandled output * Allow array keys like `ISSUES[]` as introduced in openQA commit a53b19b * Improve includes in tinycv library * Handle OpenCV exceptions when writing an image * Avoid ignoring errors silently when writing images ++++ python313: - Add CVE-2025-8291-consistency-zip64.patch which checks consistency of the zip64 end of central directory record, and preventing obfuscation of the payload, i.e., you scanning for malicious content in a ZIP file with one ZIP parser (let's say a Rust one) then unpack it in production with another (e.g., the Python one) and get malicious content that the other parser did not see (CVE-2025-8291, bsc#1251305) - Readjust patches while synchronizing between openSUSE and SLE trees: - F00251-change-user-install-location.patch - doc-py38-to-py36.patch - gh126985-mv-pyvenv.cfg2getpath.patch ++++ python313-documentation: - Add CVE-2025-8291-consistency-zip64.patch which checks consistency of the zip64 end of central directory record, and preventing obfuscation of the payload, i.e., you scanning for malicious content in a ZIP file with one ZIP parser (let's say a Rust one) then unpack it in production with another (e.g., the Python one) and get malicious content that the other parser did not see (CVE-2025-8291, bsc#1251305) - Readjust patches while synchronizing between openSUSE and SLE trees: - F00251-change-user-install-location.patch - doc-py38-to-py36.patch - gh126985-mv-pyvenv.cfg2getpath.patch ++++ python313-nogil: - Add CVE-2025-8291-consistency-zip64.patch which checks consistency of the zip64 end of central directory record, and preventing obfuscation of the payload, i.e., you scanning for malicious content in a ZIP file with one ZIP parser (let's say a Rust one) then unpack it in production with another (e.g., the Python one) and get malicious content that the other parser did not see (CVE-2025-8291, bsc#1251305) - Readjust patches while synchronizing between openSUSE and SLE trees: - F00251-change-user-install-location.patch - doc-py38-to-py36.patch - gh126985-mv-pyvenv.cfg2getpath.patch ++++ suse-migration-services: - Fix order of reboot service Make sure the reboot service is started after the potential apparmor-selinux service. Without the ordering the reboot service starts while the apparmor-selinux is installing additional software. Please note: The apparmor-selinux is intentionally not set as a required service because depending on the migration target apparmor-selinux is enabled or not. For example SLE12-to-SLE15 migrations does not enable apparmor-selinux migration. ++++ wsl-firstboot: - Adding 'Source100: README.md' as the README is suggested at src.opensuse.org setup, otherwise get the following message: * "Attention, "README.md" is not mentioned in spec files as source or patch." - Update to version 1.5.6+git20251104.86be8d4: * Adding 'sleep and clear' to sbin/wsl-firstboot * Adding skip check for SLE16.0 to modules/switch * Removing ability to skip initual user creation ------------------------------------------------------------------ ------------------ 2025-11-3 - Nov 3 2025 ------------------- ------------------------------------------------------------------ ++++ binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ kernel-64kb: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-64kb: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-default: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-default: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-rt: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-rt: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ cross-aarch64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-arm-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-avr-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-bpf-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-epiphany-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-hppa-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-hppa64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-i386-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-ia64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-loongarch64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-m68k-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-mips-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-ppc-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-ppc64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-ppc64le-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-pru-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-riscv64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-rx-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-s390-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-s390x-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-sparc-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-sparc64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-spu-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-x86_64-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ cross-xtensa-binutils: - Update to current 2.45 branch at 94cb1c075 to include fix for PR33584 (a problem related to LTO vs fortran COMMON blocks). ++++ dtb-aarch64: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ dtb-aarch64: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-source: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-source: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-docs: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-docs: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-kvmsmall: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-kvmsmall: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-obs-build: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-obs-build: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-obs-qa: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-obs-qa: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-syms: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-syms: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-zfcpdump: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ kernel-zfcpdump: - Update patches.suse/ALSA-usb-audio-Fix-NULL-pointer-deference-in-try_to_.patch (git-fixes CVE-2025-40085 bsc#1252873). - Update patches.suse/ALSA-usb-audio-fix-race-condition-to-UAF-in-snd_usbm.patch (git-fixes CVE-2025-39997 bsc#1252056). - Update patches.suse/ASoC-qcom-audioreach-fix-potential-null-pointer-dere.patch (git-fixes CVE-2025-40013 bsc#1252348). - Update patches.suse/Bluetooth-MGMT-Fix-possible-UAFs.patch (git-fixes CVE-2025-39981 bsc#1252060). - Update patches.suse/Bluetooth-hci_event-Fix-UAF-in-hci_acl_create_conn_s.patch (git-fixes CVE-2025-39982 bsc#1252083). - Update patches.suse/Input-uinput-zero-initialize-uinput_ff_upload_compat.patch (git-fixes CVE-2025-40035 bsc#1252866). - Update patches.suse/NFSD-Define-a-proc_layoutcommit-for-the-FlexFiles-layout-type.patch (git-fixes CVE-2025-40087 bsc#1252909). - Update patches.suse/PCI-endpoint-pci-epf-test-Add-NULL-check-for-DMA-cha.patch (git-fixes CVE-2025-40032 bsc#1252841). - Update patches.suse/RDMA-rxe-Fix-race-in-do_task-when-draining.patch (git-fixes CVE-2025-40061 bsc#1252849). - Update patches.suse/Squashfs-fix-uninit-value-in-squashfs_get_parent.patch (git-fixes CVE-2025-40049 bsc#1252822). - Update patches.suse/bus-fsl-mc-Check-return-value-of-platform_get_resour.patch (git-fixes CVE-2025-40029 bsc#1252772). - Update patches.suse/can-etas_es58x-populate-ndo_change_mtu-to-prevent-bu.patch (git-fixes CVE-2025-39988 bsc#1252074). - Update patches.suse/can-hi311x-populate-ndo_change_mtu-to-prevent-buffer.patch (git-fixes CVE-2025-39987 bsc#1252079). - Update patches.suse/can-mcba_usb-populate-ndo_change_mtu-to-prevent-buff.patch (git-fixes CVE-2025-39985 bsc#1252082). - Update patches.suse/can-peak_usb-fix-shift-out-of-bounds-issue.patch (git-fixes CVE-2025-40020 bsc#1252679). - Update patches.suse/can-sun4i_can-populate-ndo_change_mtu-to-prevent-buf.patch (git-fixes CVE-2025-39986 bsc#1252078). - Update patches.suse/crypto-essiv-Check-ssize-for-decryption-and-in-place.patch (git-fixes CVE-2025-40019 bsc#1252678). - Update patches.suse/crypto-hisilicon-qm-set-NULL-to-qm-debug.qm_diff_reg.patch (git-fixes CVE-2025-40062 bsc#1252850). - Update patches.suse/drm-gma500-Fix-null-dereference-in-hdmi-teardown.patch (git-fixes CVE-2025-40011 bsc#1252336). - Update patches.suse/drm-sched-Fix-potential-double-free-in-drm_sched_job.patch (git-fixes CVE-2025-40096 bsc#1252902). - Update patches.suse/fbcon-fix-integer-overflow-in-fbcon_do_set_font.patch (git-fixes CVE-2025-39967 bsc#1252033). - Update patches.suse/fbdev-simplefb-Fix-use-after-free-in-simplefb_detach.patch (git-fixes CVE-2025-40037 bsc#1252819). - Update patches.suse/fs-proc-task_mmu-check-p-vec_buf-for-NULL.patch (git-fixes CVE-2025-40009 bsc#1252333). - Update patches.suse/fs-udf-fix-OOB-read-in-lengthAllocDescs-handling.patch (git-fixes CVE-2025-40044 bsc#1252785). - Update patches.suse/io_uring-fix-multishots-with-selected-buffers.patch (git-fixes CVE-2025-40364 bsc#1241637). - Update patches.suse/iommu-vt-d-Disallow-dirty-tracking-if-incoherent-pag.patch (git-fixes CVE-2025-40058 bsc#1252854). - Update patches.suse/ixgbe-fix-too-early-devlink_free-in-ixgbe_remove.patch (git-fixes CVE-2025-40091 bsc#1252915). - Update patches.suse/ixgbevf-fix-mailbox-API-compatibility-by-negotiating.patch (bsc#1247222 CVE-2025-40104 bsc#1252921). - Update patches.suse/media-b2c2-Fix-use-after-free-causing-by-irq_check_w.patch (git-fixes CVE-2025-39996 bsc#1252065). - Update patches.suse/media-i2c-tc358743-Fix-use-after-free-bugs-caused-by.patch (git-fixes CVE-2025-39995 bsc#1252064). - Update patches.suse/media-rc-fix-races-with-imon_disconnect.patch (git-fixes CVE-2025-39993 bsc#1252070). - Update patches.suse/media-tuner-xc5000-Fix-use-after-free-in-xc5000_rele.patch (git-fixes CVE-2025-39994 bsc#1252072). - Update patches.suse/media-uvcvideo-Mark-invalid-entities-with-id-UVC_INV.patch (git-fixes CVE-2025-40016 bsc#1252346). - Update patches.suse/misc-fastrpc-fix-possible-map-leak-in-fastrpc_put_ar.patch (git-fixes CVE-2025-40036 bsc#1252865). - Update patches.suse/msft-hv-3336-uio_hv_generic-Let-userspace-take-care-of-interrupt-.patch (git-fixes CVE-2025-40048 bsc#1252862). - Update patches.suse/net-nfc-nci-Add-parameter-validation-for-packet-data.patch (git-fixes CVE-2025-40043 bsc#1252787). - Update patches.suse/smb-client-fix-crypto-buffers-in-non-linear-memory.patch (bsc#1250491 boo#1239206 CVE-2025-40052 bsc#1252851). - Update patches.suse/tty-n_gsm-Don-t-block-input-queue-by-waiting-MSC.patch (git-fixes CVE-2025-40071 bsc#1252797). - Update patches.suse/wifi-ath11k-fix-NULL-dereference-in-ath11k_qmi_m3_lo.patch (git-fixes CVE-2025-39991 bsc#1252075). - Update patches.suse/xfrm-xfrm_alloc_spi-shouldn-t-use-0-as-SPI.patch (CVE-2025-39797 bsc#1249608 CVE-2025-39965 bsc#1251967). - commit 0209f26 - coresight: trbe: Return NULL pointer for allocation failures (CVE-2025-40060 bsc#1252848). - commit f6a5f19 ++++ maven-parent: - Upgrade to Apache Maven parent POM version 45 * New features and improvements + Use a standard tag template for releases * Bug Fixes + Use spotless / palantirJavaFormat - 2.56.0 for all JDKs * Build + Allow manually executing release-drafter - Upgrade to Apache Maven parent POM version 44 * Breaking changes + Move snapshot repositories in a profile + Check test code by checkstyle * New features and improvements + Move snapshot repositories in a profile + Introduce property maven.site.path.suffix to allow override site path + Use v@{project.version} as tag template for releases + import KEYS history from svn + Add licenseText to modello + Update site descriptor to 2.0 + Check test code by checkstyle + Add issues templates + Accept all line endings with spotless + Enable automatic formatter when not on CI + Bump com.diffplug.spotless:spotless-maven-plugin to enable the sortpom/quiet option * Bug Fixes + Fix asf.yaml syntax ++++ suse-migration-services: - Add support for wicked2nm in container workflow In the container workflow no network needs to be configured because host networking is used. However, for network technology migrations like wicked to NetworkManager we have to run a slightly modified setup_host_network service. Compared to the standard service the container based network service does not activate the nm connections, because host networking is active and also stops the NetworkManager in the container instance to avoid potential conflicts with the network manager tooling running on the host e.g. wicked ++++ suse-module-tools: - Update to version 16.0.62: * spec file: remove %udev_rules_update call (bsc#1250664) ------------------------------------------------------------------ ------------------ 2025-11-2 - Nov 2 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-64kb: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-default: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-default: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-rt: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-rt: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ dtb-aarch64: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ dtb-aarch64: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-source: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-source: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-docs: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-docs: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-kvmsmall: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-kvmsmall: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-obs-build: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-obs-build: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-obs-qa: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-obs-qa: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-syms: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-syms: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-zfcpdump: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ kernel-zfcpdump: - Delete patches.suse/cpuidle-menu-Avoid-discarding-useful-information.patch. - commit 8ddc500 - regulator: bd718x7: Fix voltages scaled by resistor divider (git-fixes). - regmap: slimbus: fix bus_context pointer in regmap init calls (git-fixes). - commit 8599172 ++++ redis: - Updated to 8.2.3 (boo#1252996 CVE-2025-62507) * https://github.com/redis/redis/releases/tag/8.2.3 - Security fixes - (CVE-2025-62507) Bug in `XACKDEL` may lead to stack overflow and potential RCE - Bug fixes - `HGETEX`: A missing `numfields` argument when `FIELDS` is used can lead to Redis crash - An overflow in `HyperLogLog` with 2GB+ entries may result in a Redis crash - Cuckoo filter - Division by zero in Cuckoo filter insertion - Cuckoo filter - Counter overflow - Bloom filter - Arbitrary memory read/write with invalid filter - Bloom filter - Out-of-bounds access with empty chain - Top-k - Out-of-bounds access - Bloom filter - Restore invalid filter [We thank AWS security for responsibly disclosing the security bug] ------------------------------------------------------------------ ------------------ 2025-11-1 - Nov 1 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-64kb: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-default: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-default: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-rt: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-rt: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ dtb-aarch64: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ dtb-aarch64: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-source: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-source: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-docs: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-docs: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-kvmsmall: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-kvmsmall: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-obs-build: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-obs-build: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-obs-qa: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-obs-qa: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-syms: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-syms: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-zfcpdump: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ kernel-zfcpdump: - drm/ast: Clear preserved bits from register output value (git-fixes). - drm/panel: kingdisplay-kd097d04: Disable EoTp (git-fixes). - drm/panel: sitronix-st7789v: fix sync flags for t28cp45tn89 (git-fixes). - drm/etnaviv: fix flush sequence logic (git-fixes). - drm/nouveau: Fix race in nouveau_sched_fini() (git-fixes). - drm/sysfb: Do not dereference NULL pointer in plane reset (git-fixes). - drm/msm/dpu: Require linear modifier for writeback framebuffers (git-fixes). - drm/msm/dpu: Fix pixel extension sub-sampling (git-fixes). - drm/msm/a6xx: Fix GMU firmware parser (git-fixes). - drm/amdgpu: fix SPDX header on cyan_skillfish_reg_init.c (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Iceland (git-fixes). - drm/amd/pm/powerplay/smumgr: Fix PCIeBootLinkLevel value on Fiji (git-fixes). - drm/amd/pm: fix smu table id bound check issue in smu_cmn_update_table() (git-fixes). - drm/radeon: Remove calls to drm_put_dev() (git-fixes). - drm/radeon: Do not kfree() devres managed rdev (git-fixes). - drm/mediatek: Fix device use-after-free on unbind (git-fixes). - ASoC: fsl_sai: Fix sync error in consumer mode (git-fixes). - ASoC: fsl_sai: fix bit order for DSD format (git-fixes). - ASoC: Intel: avs: Disable periods-elapsed work when closing PCM (git-fixes). - ASoC: Intel: avs: Unprepare a stream when XRUN occurs (git-fixes). - ASoC: mediatek: Fix double pm_runtime_disable in remove functions (git-fixes). - ASoC: qdsp6: q6asm: do not sleep while atomic (git-fixes). - ALSA: usb-audio: fix control pipe direction (git-fixes). - crypto: aspeed - fix double free caused by devm (git-fixes). - commit cd0d1a8 ++++ nvidia-open-driver-G06-signed-cuda: - update non-CUDA variant to version 580.105.08 (boo#1252978) ++++ nvidia-open-driver-G06-signed: - update non-CUDA variant to version 580.105.08 (boo#1252978) ++++ plexus-velocity: - Update to version 2.3.0 * New features and improvements + Use internal Nullable annotation, allow drop sisu-inject from runtime dependencies * Maintenance + Add LICENSE file to project, fix build badge + Enhance site information + Use plexus-testing instead of direct sisu InjectedTest * Dependency updates + Override version of commons-lang3 to avoid reporting of security issues + Bump org.codehaus.plexus:plexus from 20 to 24 + Bump org.eclipse.sisu:org.eclipse.sisu.inject from 0.9.0.M3 to 0.9.0.M4 ++++ pnpm: - update to 10.20.0: * Minor Changes - Support --all option in pnpm --help to list all commands [#8628]. * Patch Changes - When the latest version doesn't satisfy the maturity requirement configured by minimumReleaseAge, pick the highest version that is mature enough, even if it has a different major version #10100. - create command should not verify patch info. - Set managePackageManagerVersions to false, when switching to a different version of pnpm CLI, in order to avoid subsequent switches #10063. - update to 10.19.0: * Minor Changes - You can now allow specific versions of dependencies to run postinstall scripts. onlyBuiltDependencies now accepts package names with lists of trusted versions. For example: Related PR: #10104. onlyBuiltDependencies: - nx@21.6.4 || 21.6.5 - esbuild@0.25.1 - Added support for exact versions in minimumReleaseAgeExclude [#9985]. You can now list one or more specific versions that pnpm should allow to install, even if those versions don’t satisfy the maturity requirement set by minimumReleaseAge. For example: minimumReleaseAge: 1440 minimumReleaseAgeExclude: - nx@21.6.5 - webpack@4.47.0 || 5.102.1 - update to 10.18.3: * Patch Changes - Fix a bug where pnpm would infinitely recurse when using verifyDepsBeforeInstall: install and pre/post install scripts that called other pnpm scripts #10060. - Fixed scoped registry keys (e.g., @scope:registry) being parsed as property paths in pnpm config get when - -location=project is used #9362. - Remove pnpm-specific CLI options before passing to npm publish to prevent "Unknown cli config" warnings #9646. - Fixed EISDIR error when bin field points to a directory [#9441]. - Preserve version and hasBin for variations packages #10022. - Fixed pnpm config set --location=project incorrectly handling keys with slashes (auth tokens, registry settings) #9884. - When both pnpm-workspace.yaml and .npmrc exist, pnpm config set --location=project now writes to pnpm-workspace.yaml (matching read priority) #10072. - Prevent a table width error in pnpm outdated --long #10040. - Sync bin links after injected dependencies are updated by build scripts. This ensures that binaries created during build processes are properly linked and accessible to consuming projects #10057. - update to 10.18.2: * Patch Changes - pnpm outdated --long should work #10040. - Replace ndjson with split2. Reduce the bundle size of pnpm CLI #10054. - pnpm dlx should request the full metadata of packages, when minimumReleaseAge is set #9963. - pnpm version switching should work when the pnpm home directory is in a symlinked directory #9715. - Fix EPIPE errors when piping output to other commands #10027. - update to 10.18.1: * Patch Changes - Don't print a warning, when --lockfile-only is used #8320. - pnpm setup creates a command shim to the pnpm executable. This is needed to be able to run pnpm self-update on Windows [#5700]. - When using pnpm catalogs and running a normal pnpm install, pnpm produced false positive warnings for "skip adding to the default catalog because it already exists". This warning now only prints when using pnpm add --save-catalog as originally intended. - update to 10.18.0: * Minor Changes - Added network performance monitoring to pnpm by implementing warnings for slow network requests, including both metadata fetches and tarball downloads. Added configuration options for warning thresholds: fetchWarnTimeoutMs and fetchMinSpeedKiBps. Warning messages are displayed when requests exceed time thresholds or fall below speed minimums Related PR: #10025. * Patch Changes - Retry filesystem operations on EAGAIN errors #9959. - Outdated command respects minimumReleaseAge configuration [#10030]. - Correctly apply the cleanupUnusedCatalogs configuration when removing dependent packages. - Don't fail with a meaningless error when scriptShell is set to false #8748. - pnpm dlx should not fail when minimumReleaseAge is set [#10037]. ------------------------------------------------------------------ ------------------ 2025-10-31 - Oct 31 2025 ------------------- ------------------------------------------------------------------ ++++ aws-cli-cmd: - Disable security context for shared volume For sharing the home directory with the container the security context needs to be disabled to allow this shared mount. For details about this setting as well as approval on the approach please visit bsc#1252390 ++++ aws-cli-cmd: - Disable security context for shared volume For sharing the home directory with the container the security context needs to be disabled to allow this shared mount. For details about this setting as well as approval on the approach please visit bsc#1252390 ++++ az-cli-cmd: - Disable security context for shared volume For sharing the home directory with the container the security context needs to be disabled to allow this shared mount. For details about this setting as well as approval on the approach please visit bsc#1252390 ++++ az-cli-cmd: - Disable security context for shared volume For sharing the home directory with the container the security context needs to be disabled to allow this shared mount. For details about this setting as well as approval on the approach please visit bsc#1252390 ++++ kernel-64kb: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-64kb: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-default: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-default: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-rt: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-rt: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ samba: - Update [printers] location to /var/samba/spool; (bsc#1249179). ++++ samba: - Update [printers] location to /var/samba/spool; (bsc#1249179). ++++ dtb-aarch64: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ dtb-aarch64: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ helmfile: - Update to version 1.1.9: * build(deps): bump actions/upload-artifact from 4 to 5 by @dependabot[bot] in #2236 * build(deps): bump actions/download-artifact from 5 to 6 by @dependabot[bot] in #2235 * feat: update strategy for reinstall by @simbou2000 in #2019 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.7 to 1.89.0 by @dependabot[bot] in #2239 * Fix: Handle empty helmBinary in base files with environment values by @Copilot in #2237 ++++ helmfile: - Update to version 1.1.9: * build(deps): bump actions/upload-artifact from 4 to 5 by @dependabot[bot] in #2236 * build(deps): bump actions/download-artifact from 5 to 6 by @dependabot[bot] in #2235 * feat: update strategy for reinstall by @simbou2000 in #2019 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.7 to 1.89.0 by @dependabot[bot] in #2239 * Fix: Handle empty helmBinary in base files with environment values by @Copilot in #2237 ++++ kernel-source: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-source: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-docs: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-docs: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-kvmsmall: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-kvmsmall: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-obs-build: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-obs-build: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-obs-qa: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-obs-qa: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-syms: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-syms: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-zfcpdump: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ++++ kernel-zfcpdump: - smb: client: fix potential cfid UAF in smb2_query_info_compound (git-fixes). - commit ae8c7ce - vhost: vringh: Fix copy_to_iter return value check (CVE-2025-40056 bsc#1252826) - commit 2460f9a - net: tun: Update napi->skb after XDP process (CVE-2025-39984 bsc#1252081) - commit e3933a9 - btrfs: don't allow adding block device of less than 1 MB (git-fixes). - commit 568a3e3 - btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots() (git-fixes). - commit 348f92c - btrfs: do not assert we found block group item when creating free space tree (bsc#1252918 CVE-2025-40100). - commit ec19be1 - btrfs: fix memory leak on duplicated memory in the qgroup assign ioctl (git-fixes). - commit 84fb697 - btrfs: fix clearing of BTRFS_FS_RELOC_RUNNING if relocation already running (git-fixes). - commit 2ab85fb - btrfs: avoid potential out-of-bounds in btrfs_encode_fh() (git-fixes). - commit 754a7d0 - Bluetooth: hci_core: Fix tracking of periodic advertisement (git-fixes). - commit e160131 - mm/mremap: correctly account old mapping after MREMAP_DONTUNMAP remap (git-fixes). - commit a874d3d - tmpfs: preserve SB_I_VERSION on remount (git-fixes). - commit 16a0fb3 - mm: shmem: fix the shmem large folio allocation for the i915 driver (git-fixes). - commit 3b07e73 - mm: fix finish_fault() handling for large folios (git-fixes). - commit 1f5c347 - mm: don't skip arch_sync_kernel_mappings() in error paths (git-fixes). - commit aab904b - coredump: Only sort VMAs when core_sort_vma sysctl is set (git-fixes). - commit 2a877a6 - net: sctp: fix KMSAN uninit-value in sctp_inq_pop (git-fixes). - commit 3c3210d - sctp: avoid NULL dereference when chunk data buffer is missing (git-fixes). - commit de09ec4 - net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (git-fixes). - commit 0da23a3 - inet: ping: check sock_net() in ping_get_port() and ping_lookup() (git-fixes). - commit acb0bb7 - sctp: Fix MAC comparison to be constant-time (git-fixes). - commit 2363529 - ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init() (git-fixes). - commit 9c6ff53 - sctp: Do not wake readers in __sctp_write_space() (git-fixes). - commit 9974f7a - ACPI: video: Fix use-after-free in acpi_video_switch_brightness() (git-fixes). - ACPI: button: Call input_free_device() on failing input device registration (git-fixes). - fbdev: atyfb: Check if pll_ops->init_pll failed (git-fixes). - fbdev: valkyriefb: Fix reference count leak in valkyriefb_init (git-fixes). - net: phy: dp83869: fix STRAP_OPMODE bitmask (git-fixes). - net: usb: asix_devices: Check return value of usbnet_get_endpoints (git-fixes). - Bluetooth: rfcomm: fix modem control handling (git-fixes). - Bluetooth: btintel_pcie: Fix event packet loss issue (git-fixes). - Bluetooth: ISO: Fix another instance of dst_type handling (git-fixes). - Revert "Bluetooth: L2CAP: convert timeouts to secs_to_jiffies()" (git-fixes). - Bluetooth: btmtksdio: Add pmctrl handling for BT closed state during reset (git-fixes). - Bluetooth: ISO: Fix BIS connection dst_type handling (git-fixes). - Bluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once (git-fixes). - usbnet: Prevents free active kevent (git-fixes). - wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode (git-fixes). - wifi: ath12k: free skb during idr cleanup callback (git-fixes). - wifi: ath11k: Add missing platform IDs for quirk table (git-fixes). - wifi: ath10k: Fix memory leak on unsupported WMI command (git-fixes). - wifi: mac80211: reset FILS discovery and unsol probe resp intervals (git-fixes). - usbnet: Fix using smp_processor_id() in preemptible code warnings (git-fixes). - commit 02b30ff ------------------------------------------------------------------ ------------------ 2025-10-30 - Oct 30 2025 ------------------- ------------------------------------------------------------------ ++++ ImageMagick: - security update - added patches CVE-2025-62594 [bsc#1252749], unsigned underflow and division-by-zero can lead to OOB pointer arithmetic and process crash * ImageMagick-CVE-2025-62594.patch ++++ rust1.91: - Add rust1.91 - Release notes can be found externally: https://github.com/rust-lang/rust/releases/tag/1.91.0 ++++ kernel-64kb: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-64kb: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-default: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-default: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-rt: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-rt: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ dtb-aarch64: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ dtb-aarch64: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-source: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-source: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-docs: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-docs: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-kvmsmall: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-kvmsmall: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-obs-build: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-obs-build: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-obs-qa: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-obs-qa: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-syms: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-syms: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-zfcpdump: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ kernel-zfcpdump: - bpf: Explicitly check accesses to bpf_sock_addr (CVE-2025-40078 bsc#1252789). - commit 3153aa7 - mm: swap: check for stable address space before operating on the VMA (CVE-2025-39992 bsc#1252076). - commit cb5a00c - kdb: Replace deprecated strcpy() with memmove() in vkdb_printf() (bsc#1252939). - commit 2f5c813 - Refresh patches.suse/perf-hwmon_pmu-Fix-uninitialized-variable-warning.patch. - commit 88b2431 ++++ product-composer: - update to version 0.6.16: - merge updateinfo's with same id into one - error out on updateinfo with same id, but non-mergable content ++++ product-composer: - update to version 0.6.16: - merge updateinfo's with same id into one - error out on updateinfo with same id, but non-mergable content ++++ product-composer: - update to version 0.6.16: - merge updateinfo's with same id into one - error out on updateinfo with same id, but non-mergable content ++++ strongswan: - CVE-2025-62291:Buffer Overflow When Handling EAP-MSCHAPv2 Failure Requests (bsc#1251941) [+ strongswan-4.4.0-6.0.2_eap_mschapv2_failure_request_len.patch] ++++ suse-migration-services: - Fix unit test for solver test case Please note, the test has been fixed in combination with a small code refactor. Review carefully. Thanks - Fixes for btrfs_snapshot_pre_migration Error handling is shadowing the real exception message. There is a potential condition that an integer value is passed in the command list, which causes an exception. This commit also fixes that part ------------------------------------------------------------------ ------------------ 2025-10-29 - Oct 29 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ chromium: - Chromium 142.0.7444.59, the stable channel promotion of 142 Security fixes (boo#1252881): * CVE-2025-12428: Type Confusion in V8 * CVE-2025-12429: Inappropriate implementation in V8 * CVE-2025-12430: Object lifecycle issue in Media * CVE-2025-12431: Inappropriate implementation in Extensions * CVE-2025-12432: Race in V8 * CVE-2025-12433: Inappropriate implementation in V8 * CVE-2025-12434: Race in Storage * CVE-2025-12435: Incorrect security UI in Omnibox * CVE-2025-12436: Policy bypass in Extensions * CVE-2025-12437: Use after free in PageInfo * CVE-2025-12438: Use after free in Ozone * CVE-2025-12439: Inappropriate implementation in App-Bound Encryption * CVE-2025-12440: Inappropriate implementation in Autofill * CVE-2025-12441: Out of bounds read in V8 * CVE-2025-12443: Out of bounds read in WebXR * CVE-2025-12444: Incorrect security UI in Fullscreen UI * CVE-2025-12445: Policy bypass in Extensions * CVE-2025-12446: Incorrect security UI in SplitView * CVE-2025-12447: Incorrect security UI in Omnibox - drop chromium-142-dawn_commit_hash.patch, the generation of the header was included in the tarball genration ++++ kernel-64kb: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-64kb: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-default: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-default: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-rt: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-rt: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ dovecot24: - drop dovecot-fix-gssapi.patch - Update dovecot to 2.4.2 (boo#1252839 CVE-2025-30189) - Critical bug fixes - CVE-2025-30189: Passdb oauth2 (not oauth2 mechanism), passdb passwd, passdb bsdauth, and userdb passwd drivers would cause users to be cached with same cache key when auth cache was enabled. - Changes - auth: Remove proxy_always field. - config: Change settings history parsing to use python3. - doveadm: Print table formatter - Print empty values as "-". - imapc: Propagate remote error codes properly. - lda: Default mail_home=$HOME environment if not using userdb lookup - lib-dcrypt: Salt for new version 2 keys has been increased to 16 bytes. - lib-dregex: Add libpcre2 based regular expression support to Dovecot, if the library is missing, disable all regular expressions. This adds libpcre2-32 as build dependency. - lib-oauth2: jwt - Allow nbf and iat to point 1 second into future. - lib: Replace libicu with our own unicode library. Removes libicu as build dependency. - login-common: If proxying fails due to remote having invalid SSL cert, don't reconnect. - New features - auth: Add ssl_client_cert_fp and ssl_client_cert_pubkey_fp fields, see https://doc.dovecot.org/latest/core/summaries/settings.html#ssl_peer_certificate_fingerprint_hash for more information. - config: Add support for $SET:filter/path/setting. - config: Improve @group includes to work with overwriting their settings. - doveadm kick: Add support for kicking multiple usernames - doveadm mailbox status: Add support for deleted status item. - imap, imap-client: Add experimental partial IMAP4rev2 support. - imap: Implement support for UTF8=ACCEPT for APPEND - lib-oauth2, oauth2: Add oauth2_token_expire_grace setting. - lmtp: lmtp-client - Support command pipelining. - login-common: Support local/remote blocks better. - master: accept() unix/inet connections before creating child process to handle it. This reduces timeouts when child processes are slow to spawn themselves. - Bug fixes - SMTPUTF8 was accepted even when it wasn't enabled. - auth, *-login: Direct logging with -L parameter was not working. - auth: Crash occured when OAUTH token validation failed with oauth2_use_worker_with_mech=yes. - auth: Invalid field handling crashes were fixed. - auth: ldap - Potential crash could happen at deinit. - auth: mech-gssapi - Server sending empty initial response would cause errors. - auth: mech-winbind - GSS-SPNEGO mechanism was erroneously marked as - not accepting NUL. - config: Multiple issues with $SET handling has been fixed. - configure: Building without LDAP didn't work. - doveadm: If source user didn't exist, a crash would occur. - imap, pop3, submission, imap-urlauth: USER environment usage was broken when running standalone. - imap-hibernate: Statistics would get truncated on unhibernation. - imap: "SEARCH MIMEPART FILENAME ENDS" command could have accessed memory outside allocated buffer, resulting in a crash. - imapc: Fetching partial headers would cause other cached headers to be cached empty, breaking e.g. imap envelope responses when caching to disk. - imapc: Shared namespace's INBOX mailbox was not always uppercased. - imapc: imapc_features=guid-forced GUID generation was not working correctly. - lda: USER environment was not accepted if -d hasn't been specified. - lib-http: http-url - Significant path percent encoding through parse and create was not preserved. This is mainly important for Dovecot's Lua bindings for lib-http. - lib-settings: Crash would occur when using %variables in SET_FILE type settings. - lib-storage: Attachment flags were attempted to be added for readonly mailboxes with mail_attachment_flags=add-flags. - lib-storage: Root directory for unusable shared namespaces was unnecessarily attempted to be created. - lib: Crash would occur when config was reloaded and logging to syslog. - login-common: Crash might have occured when login proxy was destroyed. - sqlite: The sqlite_journal_mode=wal setting didn't actually do anything. - Many other bugs have been fixed. - Update pigeonhole to 2.4.2 - Changes - lib-sieve: Use new regular expression library in core. - managesieve: Add default service_extra_groups=$SET:default_internal_group. - New features - lib-sieve: Add support for "extlists" extension. - lib-sieve: regex - Allow unicode comparator. - Bug fixes - lib-sieve-tool: sieve-tool - All sieve_script settings were overriden. - lib-sieve: storage: dict: sieve_script_dict filter was missing from settings. - sieve-ldap-storage: Fix compile without LDAP. ++++ dtb-aarch64: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ dtb-aarch64: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-source: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-source: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-docs: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-docs: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-kvmsmall: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-kvmsmall: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-obs-build: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-obs-build: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-obs-qa: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-obs-qa: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-syms: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-syms: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-zfcpdump: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ kernel-zfcpdump: - ipvs: Defer ip_vs_ftp unregister during netns cleanup (CVE-2025-40018 bsc#1252688). - commit 64026d5 - NFSD: Fix crash in nfsd4_read_release() (git-fixes). - commit e00ae91 - x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1252725). - commit 8983a77 ++++ lz4: - security update - added patches CVE-2025-62813 [bsc#1252557], incorrect error handling when passing a NULL pointer to lz4frame functions allows for application crash when processing untrusted LZ4 frames * lz4-CVE-2025-62813.patch ++++ opensuse-migration-tool: - Update to version 20251029.ed0d12d: * Update opensuse-migration-tool ++++ product-composer: - update to version 0.6.15: * Support updateinfo handling in arch specific meta data ++++ product-composer: - update to version 0.6.15: * Support updateinfo handling in arch specific meta data ++++ product-composer: - update to version 0.6.15: * Support updateinfo handling in arch specific meta data ------------------------------------------------------------------ ------------------ 2025-10-28 - Oct 28 2025 ------------------- ------------------------------------------------------------------ ++++ alloy: - update to 1.11.3: * Enhancements - Schedule new path targets faster in loki.source.file. (@kalleep) - Add prometheus.static.exporter that exposes metrics specified in a text file in Prometheus exposition format. (@kalleep) * Bugfixes - local.file_match now publish targets faster whenever targets in arguments changes. (@kalleep) - Fix otelcol.exporter.splunkhec arguments missing documented otel_attrs_to_hec_metadata block. (@dehaansa) - Support Scrape Protocol specification in CRDS for prometheus.operator.* components. (@dehaansa) - Fix panic in otelcol.receiver.syslog when no tcp block was configured. (@kalleep) ++++ alloy: - update to 1.11.3: * Enhancements - Schedule new path targets faster in loki.source.file. (@kalleep) - Add prometheus.static.exporter that exposes metrics specified in a text file in Prometheus exposition format. (@kalleep) * Bugfixes - local.file_match now publish targets faster whenever targets in arguments changes. (@kalleep) - Fix otelcol.exporter.splunkhec arguments missing documented otel_attrs_to_hec_metadata block. (@dehaansa) - Support Scrape Protocol specification in CRDS for prometheus.operator.* components. (@dehaansa) - Fix panic in otelcol.receiver.syslog when no tcp block was configured. (@kalleep) ++++ binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ kernel-64kb: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-64kb: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-default: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-default: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-rt: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-rt: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ cross-aarch64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-arm-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-avr-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-bpf-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-epiphany-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-hppa-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-hppa64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-i386-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-ia64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-loongarch64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-m68k-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-mips-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-ppc-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-ppc64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-ppc64le-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-pru-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-riscv64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-rx-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-s390-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-s390x-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-sparc-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-sparc64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-spu-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-x86_64-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ cross-xtensa-binutils: - Amend binutils-compat-old-behaviour.diff to not enable '-z gcs=implicit' on aarch64 for old codestreams. ++++ dtb-aarch64: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ dtb-aarch64: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ evolution: - Add evolution-fix-javascript-code.patch: Fix JavaScript dictionary objects creation. Needed for WebKitGTK >= 2.50 (bsc#1252722 glgo#GNOME/evolution#3124). ++++ kernel-source: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-source: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-docs: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-docs: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-kvmsmall: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-kvmsmall: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-obs-build: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-obs-build: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-obs-qa: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-obs-qa: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-syms: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-syms: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-zfcpdump: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ kernel-zfcpdump: - KVM: x86: Don't load/put vCPU when unloading its MMU during teardown (git-fixes). - commit 625c23b - md/raid1: fix data lost for writemostly rdev (git-fixes). - commit 9711ae3 - timers: Add missing READ_ONCE() in __run_timer_base() (git-fixes). - commit 01edf7f - x86/resctrl: Fix miscount of bandwidth event when reactivating previously unavailable RMID (bsc#1252734). - commit bcfb9ac - x86/resctrl: Refactor resctrl_arch_rmid_read() (bsc#1252734). - commit 47cb871 - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397 bsc#1249398). - commit a032b7d - net/smc: fix warning in smc_rx_splice() when calling get_page() (CVE-2025-40012 bsc#1252330). - commit 75584c2 - KVM: x86: move vm_destroy callback at end of kvm_arch_destroy_vm (git-fixes). - commit e564cdc - Update patches.suse/nvme-auth-update-bi_directional-flag.patch (git-fixes bsc#1249735). - Update patches.suse/nvme-tcp-send-only-permitted-commands-for-secure-con.patch (git-fixes bsc#1249397). - commit b5375ad - nvme/tcp: handle tls partially sent records in write_space() (git-fixes). - nvme-auth: update sc_c in host response (git-fixes bsc#1249397). - nvme-multipath: Skip nr_active increments in RETRY disposition (git-fixes). - nvme-pci: Add TUXEDO IBS Gen8 to Samsung sleep quirk (git-fixes). - commit 988d439 - i40e: add max boundary check for VF filters (CVE-2025-39968 bsc#1252047). - i40e: fix validation of VF state in get resources (CVE-2025-39969 bsc#1252044). - i40e: fix idx validation in i40e_validate_queue_map (CVE-2025-39972 bsc#1252039). - i40e: add validation for ring_len param (CVE-2025-39973 bsc#1252035). - igc: don't fail igc_probe() on LED setup error (CVE-2025-39956 bsc#1251809). - ice: fix Rx page leak on multi-buffer frames (CVE-2025-39948 bsc#1251233). - qed: Don't collect too many protection override GRC elements (CVE-2025-39949 bsc#1251177). - commit fd8c4e7 - drm/xe/guc_submit: fix race around pending_disable (git-fixes). - commit 4c4892e - drm/xe/guc: Adding steering info support for GuC register lists (git-fixes). - commit 3d70978 - drm/xe/guc: Prepare GuC register list and update ADS size for error capture (stable-fixes). - Refresh patches.suse/drm-xe-Set-LRC-addresses-before-guc-load.patch. - commit b0f889f - Remove unnecessary firmware version check for gc v9_4_2 (stable-fixes). - commit f08b376 - KVM: TDX: Fix uninitialized error code for __tdx_bringup() (git-fixes). - commit 91d2e64 - KVM: TDX: Remove redundant __GFP_ZERO (git-fixes). - commit d028109 - x86/tdx: Skip clearing reclaimed pages unless X86_BUG_TDX_PW_MCE is present (git-fixes). - commit 99576da - x86/tdx: Tidy reset_pamt functions (git-fixes). - commit 39b4875 - x86/tdx: Eliminate duplicate code in tdx_clear_page() (git-fixes). - commit b1d3c98 - KVM: TDX: Move TDX hardware setup from main.c to tdx.c (git-fixes). - commit f5a7c5b - cpufreq/amd-pstate: Avoid shadowing ret in amd_pstate_ut_check_driver() (git-fixes). - commit f494d60 ++++ ongres-scram: - Addressed Timing Attack Vulnerability in SCRAM Authentication (bsc#1250399, CVE-2025-59432) - Added: * CVE-2025-59432.patch ++++ python-bson: - Add patch support-python314.patch: * Support Python 3.14 removals. ++++ xwayland: - bsc1251958_CVE-2025-62229_0001-present-Fix-use-after-free-in-present_create_notifie.patch * Use-after-free in XPresentNotify structures creation (CVE-2025-62229, bsc#1251958) - bsc1251959_CVE-2025-62230_0001-xkb-Make-the-RT_XKBCLIENT-resource-private.patch bsc1251959_CVE-2025-62230_0002-xkb-Free-the-XKB-resource-when-freeing-XkbInterest.patch * Use-after-free in Xkb client resource removal (CVE-2025-62230, bsc#1251959) - bsc1251960_CVE-2025-62231_0001-xkb-Prevent-overflow-in-XkbSetCompatMap.patch * Value overflow in Xkb extension XkbSetCompatMap() (CVE-2025-62231, bsc#1251960) ------------------------------------------------------------------ ------------------ 2025-10-27 - Oct 27 2025 ------------------- ------------------------------------------------------------------ ++++ agama-web-ui: - Use the JavaScript/TypeScript parser to extract strings for translation (gh#agama-project/agama#2748). ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ chromium: - Chromium 142.0.7444.52 - added patches: chromium-142-rust-revert_should_panic.patch re-add __rust_alloc_error_handler_should_panic to fix unresolved symbol chromium-142-dawn_commit_hash.patch: create gpu/webgpu/dawn_commit_hash.h which should be in tarball chromium-142-rust_no_sanitize.patch: revert rust change no_sanitize to sanitize=off chromium-142-iwyu-field-form-data.patch - drop chromium-139-pdfium-openjpeg-CVE-2025-54874.patch - update ppc patches modified patches: ppc-fedora-0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch# ppc-fedora-0001-third-party-hwy-wrong-include.patch ppc-fedora-0002-regenerate-xnn-buildgn.patch ppc-fedora-add-ppc64-architecture-to-extensions.diff removed patches: ppc-fedora-fix-ppc64-rust_png-build-error.patch (obsolete) ++++ kernel-64kb: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-64kb: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-default: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-default: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-rt: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-rt: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ docker: - Enable SELinux in default daemon.json config (--selinux-enabled). This has no practical impact on non-SELinux systems. bsc#1252290 ++++ docker: - Enable SELinux in default daemon.json config (--selinux-enabled). This has no practical impact on non-SELinux systems. bsc#1252290 ++++ dtb-aarch64: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ dtb-aarch64: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ hauler: - Update to version 1.3.0: * bump the go_modules group across 1 directory with 2 updates (#455) * upgraded versions/dependencies/deprecations (#454) * allow loading of docker tarballs (#452) * bump the go_modules group across 1 directory with 2 updates (#449) ++++ helmfile: - Update to version 1.1.8: * build(deps): bump github.com/hashicorp/go-getter from 1.8.0 to 1.8.1 by @dependabot[bot] in #2194 * fix typos in both comment and error message by @d-fal in #2199 * cleanup disk in release ci by @yxxhero in #2203 * Migrate AWS SDK from v1 to v2 to resolve deprecation warnings by @Copilot in #2202 * build(deps): bump github.com/helmfile/vals from 0.42.1 to 0.42.2 by @dependabot[bot] in #2200 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.2 to 1.88.3 by @dependabot[bot] in #2206 * Bump Alpine to 3.22 in Dockerfile by @orishamir in #2205 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.10 to 1.31.12 by @dependabot[bot] in #2207 * Add yq to Dockerfile by @orishamir in #2208 * fix: skip chartify for build command jsonPatches by @sstarcher in #2212 * build(deps): bump github.com/hashicorp/go-getter from 1.8.1 to 1.8.2 by @dependabot[bot] in #2210 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.3 to 1.88.4 by @dependabot[bot] in #2213 * build(deps): bump golang.org/x/term from 0.35.0 to 0.36.0 by @dependabot[bot] in #2214 * Avoid fetching same chart/version multiple times by @Copilot in #2197 * build(deps): bump github.com/helmfile/vals from 0.42.2 to 0.42.4 by @dependabot[bot] in #2217 * docs: add zread badge to README by @yxxhero in #2219 * Bump helm-diff to v3.13.1 by @Copilot in #2223 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.4 to 1.88.5 by @dependabot[bot] in #2226 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.12 to 1.31.13 by @dependabot[bot] in #2225 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.5 to 1.88.6 by @dependabot[bot] in #2230 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.6 to 1.88.7 by @dependabot[bot] in #2232 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.13 to 1.31.15 by @dependabot[bot] in #2233 * Fix helmBinary and kustomizeBinary being ignored when using bases by @Copilot in #2228 ++++ helmfile: - Update to version 1.1.8: * build(deps): bump github.com/hashicorp/go-getter from 1.8.0 to 1.8.1 by @dependabot[bot] in #2194 * fix typos in both comment and error message by @d-fal in #2199 * cleanup disk in release ci by @yxxhero in #2203 * Migrate AWS SDK from v1 to v2 to resolve deprecation warnings by @Copilot in #2202 * build(deps): bump github.com/helmfile/vals from 0.42.1 to 0.42.2 by @dependabot[bot] in #2200 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.2 to 1.88.3 by @dependabot[bot] in #2206 * Bump Alpine to 3.22 in Dockerfile by @orishamir in #2205 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.10 to 1.31.12 by @dependabot[bot] in #2207 * Add yq to Dockerfile by @orishamir in #2208 * fix: skip chartify for build command jsonPatches by @sstarcher in #2212 * build(deps): bump github.com/hashicorp/go-getter from 1.8.1 to 1.8.2 by @dependabot[bot] in #2210 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.3 to 1.88.4 by @dependabot[bot] in #2213 * build(deps): bump golang.org/x/term from 0.35.0 to 0.36.0 by @dependabot[bot] in #2214 * Avoid fetching same chart/version multiple times by @Copilot in #2197 * build(deps): bump github.com/helmfile/vals from 0.42.2 to 0.42.4 by @dependabot[bot] in #2217 * docs: add zread badge to README by @yxxhero in #2219 * Bump helm-diff to v3.13.1 by @Copilot in #2223 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.4 to 1.88.5 by @dependabot[bot] in #2226 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.12 to 1.31.13 by @dependabot[bot] in #2225 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.5 to 1.88.6 by @dependabot[bot] in #2230 * build(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.6 to 1.88.7 by @dependabot[bot] in #2232 * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.31.13 to 1.31.15 by @dependabot[bot] in #2233 * Fix helmBinary and kustomizeBinary being ignored when using bases by @Copilot in #2228 ++++ kernel-source: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-source: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-docs: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-docs: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-kvmsmall: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-kvmsmall: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-livepatch-SLE16-RT_Update_1: - Explicitly add module-common.c with vermagic and retpoline modinfo The upstream kernel commit fdf94e4403ece60 ("kbuild: compile constant module information only once") moved some modinfo definitions into module-common.c so that the same information can be simply linked with each module. It used to be added by "modpost" tool. Unfortunately, the patch integrating klp-convert minimal into SUSE kernel source package did not update the new target for linking livepatch modules accordingly. As a result, the "vermagic" and "retpoline" modinfo is missing in the livepatch for the SLE 16.0 GM kernel. It causes warnings and taints the kernel, for example: [ 2.468950][ T567] livepatch_1_160000_4_3: bad vermagic: kernel tainted. [ 2.469333][ T567] Disabling lock debugging due to kernel taint [ 2.473425][ T567] Spectre V2 : System may be vulnerable to spectre v2 [ 2.473807][ T567] livepatch_1_160000_4_3: loading module not compiled with retpoline compiler. The klp-convert integration is fixed in never kernel releases. But it does not help for livepatches against the GM kernel which are built using the non-fixed Makefile.modfinal from the related devel package. Workaround the problem by explicitly adding the module-common.c into the livepatch sources. And build/link the livepatch for the SL 16.0 GM kernel with it. References: bsc#1252270 - commit 4e1681b ++++ kernel-obs-build: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-obs-build: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-obs-qa: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-obs-qa: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-syms: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-syms: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-zfcpdump: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ kernel-zfcpdump: - scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). - md: fix mssing blktrace bio split events (git-fixes). - commit 8af9b0e - scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). - hyperv: Remove the spurious null directive line (git-fixes). - Drivers: hv: vmbus: Fix typos in vmbus_drv.c (git-fixes). - Drivers: hv: vmbus: Fix sysfs output format for ring buffer index (git-fixes). - Drivers: hv: vmbus: Clean up sscanf format specifier in target_cpu_store() (git-fixes). - mshv: Handle NEED_RESCHED_LAZY before transferring to guest (git-fixes). - x86/hyperv: Add kexec/kdump support on Azure CVMs (git-fixes). - Drivers: hv: util: Cosmetic changes for hv_utils_transport.c (git-fixes). - clocksource: hyper-v: Skip unnecessary checks for the root partition (git-fixes). - hyperv: Add missing field to hv_output_map_device_interrupt (git-fixes). - uio_hv_generic: Let userspace take care of interrupt mask (git-fixes). - scsi: storvsc: Remove redundant ternary operators (git-fixes). - net: mana: Reduce waiting time if HWC not responding (git-fixes). - commit dc5fea5 - amd-pstate-ut: Reset amd-pstate driver mode after running selftests (bsc#1249226). - commit 62def1a - cpufreq/amd-pstate: Fix a regression leading to EPP 0 after hibernate (git-fixes). - commit 60d54b4 - ACPI: platform-profile: Fix CFI violation when accessing sysfs files (git-fixes). - commit 6a68087 - tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (git-fixes). - commit 9b6914d - octeontx2-pf: Fix potential use after free in otx2_tc_add_flow() (CVE-2025-39978 bsc#1252069). - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() (CVE-2025-39955 bsc#1251804). - commit 63120f8 - wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait() (CVE-2025-40000 bsc#1252062). - commit 247f800 - most: usb: hdm_probe: Fix calling put_device() before device initialization (git-fixes). - most: usb: Fix use-after-free in hdm_disconnect (git-fixes). - misc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup (git-fixes). - serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). - serial: 8250_dw: handle reset control deassert error (git-fixes). - serial: sc16is7xx: remove useless enable of enhanced features (git-fixes). - xhci: dbc: enable back DbC in resume if it was enabled before suspend (git-fixes). - xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). - spi: airoha: fix reading/writing of flashes with more than one plane per lun (git-fixes). - spi: airoha: add support of dual/quad wires spi modes to exec_op() handler (git-fixes). - spi: airoha: return an error for continuous mode dirmap creation cases (git-fixes). - spi: spi-nxp-fspi: add extra delay after dll locked (git-fixes). - net: usb: rtl8150: Fix frame padding (git-fixes). - net: usb: lan78xx: fix use of improperly initialized dev->chipid in lan78xx_reset (git-fixes). - r8152: add error handling in rtl8152_driver_init (git-fixes). - r8169: fix packet truncation after S4 resume on RTL8168H/RTL8111H (git-fixes). - rtc: interface: Ensure alarm irq is enabled when UIE is enabled (stable-fixes). - rtc: interface: Fix long-standing race when setting alarm (stable-fixes). - PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release (git-fixes). - PCI/AER: Support errors introduced by PCIe r6.0 (stable-fixes). - phy: cadence: cdns-dphy: Update calibration wait time for startup state machine (git-fixes). - phy: cadence: cdns-dphy: Fix PLL lock and O_CMN_READY polling (git-fixes). - phy: cdns-dphy: Store hs_clk_rate and return it (stable-fixes). - mtd: rawnand: fsmc: Default to autodetect buswidth (stable-fixes). - wifi: mt76: mt7921u: Add VID/PID for Netgear A7500 (stable-fixes). - wifi: mt76: mt7925u: Add VID/PID for Netgear A9000 (stable-fixes). - media: vivid: fix disappearing messages (git-fixes). - media: nxp: imx8-isi: Drop unused argument to mxc_isi_channel_chain() (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Set use_single_read regmap_config flag (git-fixes). - mmc: mmc_spi: multiple block read remove read crc ack (stable-fixes). - mmc: core: SPI mode remove cmd7 (stable-fixes). - lib/crypto/curve25519-hacl64: Disable KASAN with clang-17 and older (stable-fixes). - PM: runtime: Add new devm functions (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Drop unneeded assignment for cache_type (stable-fixes). - mfd: intel_soc_pmic_chtdc_ti: Fix invalid regmap-config max_register value (stable-fixes). - net: usb: lan78xx: Add error handling to lan78xx_init_mac_address (stable-fixes). - PCI: endpoint: Remove surplus return statement from pci_epf_test_clean_dma_chan() (stable-fixes). - commit 7cc4d1c - drm/panic: Fix qr_code, ensure vmargin is positive (git-fixes). - firmware: arm_scmi: Fix premature SCMI_XFER_FLAG_IS_RAW clearing in raw mode (git-fixes). - firmware: arm_scmi: Account for failed debug initialization (git-fixes). - hwmon: (sht3x) Fix error handling (git-fixes). - gpio: ljca: Fix duplicated IRQ mapping (git-fixes). - gpio: pci-idio-16: Define maximum valid register address offset (git-fixes). - gpio: 104-idio-16: Define maximum valid register address offset (git-fixes). - HID: multitouch: fix name of Stylus input devices (git-fixes). - HID: hid-input: only ignore 0 battery events for digitizers (git-fixes). - commit 07ce516 - ASoC: SOF: ipc4-pcm: Enable delay reporting for ChainDMA streams (stable-fixes). - Refresh patches.suse/ASoC-SOF-ipc4-topology-Correct-the-minimum-host-DMA-.patch. - commit fc33a6f - drm/panic: Fix drawing the logo on a small narrow screen (git-fixes). - drm/panthor: Fix kernel panic on partial unmap of a GPU VA region (git-fixes). - drm/amd/display: use GFP_NOWAIT for allocation in interrupt handler (git-fixes). - can: netlink: can_changelink(): allow disabling of automatic restart (git-fixes). - can: rockchip-canfd: rkcanfd_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: esd: acc_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - can: bxcan: bxcan_start_xmit(): use can_dev_dropped_skb() instead of can_dropped_invalid_skb() (git-fixes). - ASoC: nau8821: Add DMI quirk to bypass jack debounce circuit (git-fixes). - ASoC: nau8821: Generalize helper to clear IRQ status (git-fixes). - ASoC: nau8821: Cancel jdet_work before handling jack ejection (git-fixes). - ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails (git-fixes). - ASoC: codecs: Fix gain setting ranges for Renesas IDT821034 codec (git-fixes). - ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card (git-fixes). - ALSA: firewire: amdtp-stream: fix enum kernel-doc warnings (git-fixes). - drm/xe/guc: Check GuC running state before deregistering exec queue (git-fixes). - drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies (git-fixes). - accel/qaic: Synchronize access to DBC request queue head & tail pointer (git-fixes). - accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() (git-fixes). - accel/qaic: Fix bootlog initialization ordering (git-fixes). - drm/rockchip: vop2: use correct destination rectangle height check (git-fixes). - drm/bridge: lt9211: Drop check for last nibble of version register (git-fixes). - drm/panthor: Ensure MCU is disabled on suspend (git-fixes). - drm/amdgpu: fix gfx12 mes packet status return check (stable-fixes). - drm/amd/powerplay: Fix CIK shutdown temperature (git-fixes). - drm/amdgpu: use atomic functions with memory barriers for vm fault info (git-fixes). - drm/amdgpu: fix handling of harvesting for ip_discovery firmware (git-fixes). - drm/i915/guc: Skip communication warning on reset in progress (git-fixes). - can: m_can: m_can_chip_config(): bring up interface in correct state (git-fixes). - can: m_can: m_can_handle_state_errors(): fix CAN state transition to Error Active (git-fixes). - can: m_can: m_can_plat_remove(): add missing pm_runtime_disable() (git-fixes). - can: gs_usb: gs_make_candev(): populate net_device->dev_port (git-fixes). - can: gs_usb: increase max interface to U8_MAX (git-fixes). - ASoC: SOF: ipc4-pcm: fix start offset calculation for chain DMA (git-fixes). - ASoC: SOF: ipc4-pcm: fix delay calculation when DSP resamples (git-fixes). - clk: nxp: Fix pll0 rate check condition in LPC18xx CGU driver (git-fixes). - clk: nxp: lpc18xx-cgu: convert from round_rate() to determine_rate() (stable-fixes). - drm/amdgpu: add support for cyan skillfish without IP discovery (stable-fixes). - drm/amdgpu: add ip offset support for cyan skillfish (stable-fixes). - ACPI: property: Do not pass NULL handles to acpi_attach_data() (git-fixes). - ACPI: property: Add code comments explaining what is going on (stable-fixes). - ACPI: property: Disregard references in data-only subnode lists (stable-fixes). - ACPICA: Allow to skip Global Lock initialization (stable-fixes). - drm/exynos: exynos7_drm_decon: properly clear channels during bind (stable-fixes). - drm/exynos: exynos7_drm_decon: fix uninitialized crtc reference in functions (stable-fixes). - commit fba5dbc - spi: cadence-quadspi: Implement refcount to handle unbind during busy (CVE-2025-40005 bsc#1252349). - commit 3246504 ++++ suse-migration-services: - Bump version: 2.1.25 → 2.1.26 - Bump Migration changelog version: 2.1.26 ------------------------------------------------------------------ ------------------ 2025-10-26 - Oct 26 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-64kb: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-default: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-default: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-rt: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-rt: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ dtb-aarch64: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ dtb-aarch64: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-source: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-source: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-docs: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-docs: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-kvmsmall: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-kvmsmall: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-obs-build: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-obs-build: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-obs-qa: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-obs-qa: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-syms: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-syms: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-zfcpdump: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ++++ kernel-zfcpdump: - i40e: fix idx validation in config queues msg (CVE-2025-39971 bsc#1252052) - commit 61648b1 - i40e: fix input validation logic for action_meta (CVE-2025-39970 bsc#1252051) - commit 333e729 ------------------------------------------------------------------ ------------------ 2025-10-25 - Oct 25 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-64kb: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-default: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-default: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-rt: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-rt: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ dtb-aarch64: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ dtb-aarch64: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-source: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-source: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-docs: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-docs: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-kvmsmall: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-kvmsmall: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-obs-build: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-obs-build: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-obs-qa: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-obs-qa: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-syms: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-syms: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-zfcpdump: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ kernel-zfcpdump: - scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes). - scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes). - scsi: pm80xx: Fix pm8001_abort_task() for chip_8006 when using an expander (git-fixes). - scsi: pm80xx: Add helper function to get the local phy id (git-fixes). - scsi: pm80xx: Use dev_parent_is_expander() helper (git-fixes). - scsi: libsas: Add dev_parent_is_expander() helper (git-fixes). - scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). - scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). - scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes). - scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). - commit 3570466 - arm64, mm: avoid always making PTE dirty in pte_mkwrite() (git-fixes) - commit da7d611 - arm64: errata: Apply workarounds for Neoverse-V3AE (git-fixes) - commit 986e15f - arm64: cputype: Add Neoverse-V3AE definitions (git-fixes) - commit 47240ca ++++ maven-plugin-tools: - Upgrade to upstream version 3.15.2 * Documentation updates + Fix run-on sentence + Update document to use Guice constructor injection + MNGSITE-529: Rename "Goals" to "Plugin Documentation" * Maintenance + Update site descriptors to 2.0 + Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method + Cleanups dependencies + Use injection instead of Component annotation + Begin converting this plugin to Guice constructor injection + refactor: Replace Plexus AbstractLogEnabled with SLF4J + Use properties for versions in components.xml + JDK 25 build fix + MPLUGIN-543: Update to Parent 44 + Add release drafter + Add PR Automation action * Dependency updates + Bump org.jsoup:jsoup from 1.18.1 to 1.19.1 + Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.6.1 + Bump org.codehaus.plexus:plexus-velocity from 2.2.0 to 2.3.0 + Bump net.bytebuddy:byte-buddy from 1.15.5 to 1.17.8 + Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.3 + Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.5.0 + Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.19.0 + Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0 + Bump org.assertj:assertj-core from 3.26.3 to 3.27.6 + Bump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 + Bump asmVersion from 9.7.1 to 9.9 + Bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4.1 + Bump org.codehaus.plexus:plexus-i18n from 1.0-beta-10 to 1.0.0 + Bump maven3Version from 3.9.9 to 3.9.11 + Bump org.codehaus.plexus:plexus-xml from 3.0.1 to 3.0.2 + Bump org.apache.maven:maven-parent from 44 to 45 + Bump antVersion from 1.10.14 to 1.10.15 - Modified patches: * 0002-Remove-dependency-on-jtidy.patch + different line endings CRLF -> LF * maven-plugin-plugin-bootstrap-resouces.patch + regenerate in cycle with itself ++++ maven-plugin-plugin: - Upgrade to upstream version 3.15.2 * Documentation updates + Fix run-on sentence + Update document to use Guice constructor injection + MNGSITE-529: Rename "Goals" to "Plugin Documentation" * Maintenance + Update site descriptors to 2.0 + Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method + Cleanups dependencies + Use injection instead of Component annotation + Begin converting this plugin to Guice constructor injection + refactor: Replace Plexus AbstractLogEnabled with SLF4J + Use properties for versions in components.xml + JDK 25 build fix + MPLUGIN-543: Update to Parent 44 + Add release drafter + Add PR Automation action * Dependency updates + Bump org.jsoup:jsoup from 1.18.1 to 1.19.1 + Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.6.1 + Bump org.codehaus.plexus:plexus-velocity from 2.2.0 to 2.3.0 + Bump net.bytebuddy:byte-buddy from 1.15.5 to 1.17.8 + Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.3 + Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.5.0 + Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.19.0 + Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0 + Bump org.assertj:assertj-core from 3.26.3 to 3.27.6 + Bump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 + Bump asmVersion from 9.7.1 to 9.9 + Bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4.1 + Bump org.codehaus.plexus:plexus-i18n from 1.0-beta-10 to 1.0.0 + Bump maven3Version from 3.9.9 to 3.9.11 + Bump org.codehaus.plexus:plexus-xml from 3.0.1 to 3.0.2 + Bump org.apache.maven:maven-parent from 44 to 45 + Bump antVersion from 1.10.14 to 1.10.15 - Modified patches: * 0002-Remove-dependency-on-jtidy.patch + different line endings CRLF -> LF * maven-plugin-plugin-bootstrap-resouces.patch + regenerate in cycle with itself ++++ maven-plugin-plugin-bootstrap: - Upgrade to upstream version 3.15.2 * Documentation updates + Fix run-on sentence + Update document to use Guice constructor injection + MNGSITE-529: Rename "Goals" to "Plugin Documentation" * Maintenance + Update site descriptors to 2.0 + Add support for Maven 4 PluginDescriptor.getRequiredJavaVersion() method + Cleanups dependencies + Use injection instead of Component annotation + Begin converting this plugin to Guice constructor injection + refactor: Replace Plexus AbstractLogEnabled with SLF4J + Use properties for versions in components.xml + JDK 25 build fix + MPLUGIN-543: Update to Parent 44 + Add release drafter + Add PR Automation action * Dependency updates + Bump org.jsoup:jsoup from 1.18.1 to 1.19.1 + Bump org.codehaus.plexus:plexus-testing from 1.4.0 to 1.6.1 + Bump org.codehaus.plexus:plexus-velocity from 2.2.0 to 2.3.0 + Bump net.bytebuddy:byte-buddy from 1.15.5 to 1.17.8 + Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.3 + Bump org.codehaus.plexus:plexus-java from 1.3.0 to 1.5.0 + Bump org.apache.commons:commons-lang3 from 3.17.0 to 3.19.0 + Bump org.codehaus.plexus:plexus-classworlds from 2.8.0 to 2.9.0 + Bump org.assertj:assertj-core from 3.26.3 to 3.27.6 + Bump org.codehaus.plexus:plexus-utils from 4.0.1 to 4.0.2 + Bump asmVersion from 9.7.1 to 9.9 + Bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4.1 + Bump org.codehaus.plexus:plexus-i18n from 1.0-beta-10 to 1.0.0 + Bump maven3Version from 3.9.9 to 3.9.11 + Bump org.codehaus.plexus:plexus-xml from 3.0.1 to 3.0.2 + Bump org.apache.maven:maven-parent from 44 to 45 + Bump antVersion from 1.10.14 to 1.10.15 - Modified patches: * 0002-Remove-dependency-on-jtidy.patch + different line endings CRLF -> LF * maven-plugin-plugin-bootstrap-resouces.patch + regenerate in cycle with itself ------------------------------------------------------------------ ------------------ 2025-10-24 - Oct 24 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-64kb: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-default: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-default: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-rt: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-rt: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ dtb-aarch64: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ dtb-aarch64: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-source: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-source: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-docs: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-docs: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-kvmsmall: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-kvmsmall: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-obs-build: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-obs-build: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-obs-qa: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-obs-qa: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-syms: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-syms: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-zfcpdump: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ kernel-zfcpdump: - scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). - Refresh patches.suse/scsi-mpi3mr-Serialize-admin-queue-BAR-writes-on-32-bit-sys.patch. - commit 51bb9bc - scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). - scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). - commit 38e545b - kABI: fix for struct hrtimer_cpu_base (CVE-2025-21816 bsc#1238472) - commit 0177587 - xfs: rename the old_crc variable in xlog_recover_process (git-fixes). - commit a33e036 - NFSD: Minor cleanup in layoutcommit processing (git-fixes). - commit 0111c00 - NFSD: Rework encoding and decoding of nfsd4_deviceid (git-fixes). - commit 9c6f966 - nfsd: Drop dprintk in blocklayout xdr functions (git-fixes). - commit 6cb9aff - nfsd: Use correct error code when decoding extents (git-fixes). - commit 080ee5e ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ openQA: - Update to version 5.1761296552.ae7c17aa: * Add tests for file_security_policy * Pass parameter $is_userfile to log_url * Remove redirect and serve files as attachments if necessary * Serve files uploaded by tests via asset domain * Use direct link to subdomain for the test assets * Revert "Don't redirect to asset domain via /needles/ID/(image|json) route" * Revert "Don't redirect screenshots, thumbs and needles to files_domain" ++++ x3270: - Applied a patch * x3270-termios.patch to include 'termios.h' in 'Common/x3270if.c' - Ammended the .spec file ------------------------------------------------------------------ ------------------ 2025-10-23 - Oct 23 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-64kb: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-default: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-default: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-rt: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-rt: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ dtb-aarch64: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ dtb-aarch64: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-source: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-source: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-docs: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-docs: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-kvmsmall: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-kvmsmall: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-obs-build: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-obs-build: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-obs-qa: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-obs-qa: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-syms: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-syms: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-zfcpdump: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ kernel-zfcpdump: - blk-zoned: Fix a lockdep complaint about recursive locking (git-fixes). - block: fix kobject double initialization in add_disk (git-fixes). - lib/sbitmap: convert shallow_depth from one word to the whole sbitmap (git-fixes). - block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). - commit 213ae89 - net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() (CVE-2025-39876 bsc#1250400) - commit 3be7e1e - proc: fix type confusion in pde_set_flags() (bsc#1248630) - commit 12ef5f2 - proc: fix missing pde_set_flags() for net proc files (bsc#1248630) - commit 9aac12e - proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CVE-2025-38653 bsc#1248630) - commit 038e313 - add bug reference to existing hv_netvsc change (bsc#1252265) - commit bded92b - fs/xattr.c: fix simple_xattr_list() (git-fixes). - commit 0c27ee1 ++++ objectweb-asm: - Upgrade to version 9.9 * new Opcodes.V26 constant for Java 26 * new mapInvokeDynamicMethodName method in Remapper. Old method deprecated. New Remapper constructor, with an api parameter. * bug fixes + 318028: Textifier misinterprets ACC_SUPER of inner classes as ACC_SYNCHRONIZED + 318032: FIPS 140-3 and SerialVersionUIDAdder's SHA-1 Use + 318034: Many ASM contents lack API detection. ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ openQA: - Update to version 5.1761228068.a3a7f84d: * Dependency cron 2025-10-23 ++++ osinfo-db: - bsc#1252429 - virt-manager does not detect Leap 16.0 offline ISO add-opensuse-leap-16.0-support.patch ++++ suse-migration-services: - Set systemd offline for Zypper in chroot mode Calling zypper in a new system root should be done in offline systemd mode to prevent package scripts to access services not necessarily present ------------------------------------------------------------------ ------------------ 2025-10-22 - Oct 22 2025 ------------------- ------------------------------------------------------------------ ++++ bind: - Upgrade to release 9.20.15 Security Fixes: * DNSSEC validation fails if matching but invalid DNSKEY is found. [CVE-2025-8677, bsc#1252378] * Address various spoofing attacks. [CVE-2025-40778, bsc#1252379] * Cache-poisoning due to weak pseudo-random number generator. [CVE-2025-40780, bsc#1252380] New Features: * Add dnssec-policy keys configuration check to named-checkconf. * Add a new option `manual-mode` to dnssec-policy. * Add a new option `servfail-until-ready` to response-policy zones. * Support for parsing HHIT and BRID records has been added. * Support for parsing DSYNC records has been added. Removed Features: * Deprecate the `tkey-gssapi-credential` statement. * Obsolete the `tkey-domain` statement. Feature Changes: * Add deprecation warnings for RSASHA1, RSASHA1-NSEC3SHA1, and DS digest type 1. Bug Fixes: * Missing DNSSEC information when CD bit is set in query. * rndc sign during ZSK rollover will now replace signatures. * Use signer name when disabling DNSSEC algorithms. * Preserve cache when reload fails and reload the server again. * Prevent spurious SERVFAILs for certain 0-TTL resource records. * Fix unexpected termination if catalog-zones had undefined `default-primaries`. * Stale RRsets in a CNAME chain were not always refreshed. * Add RPZ extended DNS error for zones with a CNAME override policy configured. * Fix dig +keepopen option. * Log dropped or slipped responses in the query-errors category. * Fix synth-from-dnssec not working in some scenarios. * Clean enough memory when adding new ADB names/entries under memory pressure. * Prevent spurious validation failures. * Ensure file descriptors 0-2 are in use before using libuv [bsc#1230649] ++++ bind: - Upgrade to release 9.20.15 Security Fixes: * DNSSEC validation fails if matching but invalid DNSKEY is found. [CVE-2025-8677, bsc#1252378] * Address various spoofing attacks. [CVE-2025-40778, bsc#1252379] * Cache-poisoning due to weak pseudo-random number generator. [CVE-2025-40780, bsc#1252380] New Features: * Add dnssec-policy keys configuration check to named-checkconf. * Add a new option `manual-mode` to dnssec-policy. * Add a new option `servfail-until-ready` to response-policy zones. * Support for parsing HHIT and BRID records has been added. * Support for parsing DSYNC records has been added. Removed Features: * Deprecate the `tkey-gssapi-credential` statement. * Obsolete the `tkey-domain` statement. Feature Changes: * Add deprecation warnings for RSASHA1, RSASHA1-NSEC3SHA1, and DS digest type 1. Bug Fixes: * Missing DNSSEC information when CD bit is set in query. * rndc sign during ZSK rollover will now replace signatures. * Use signer name when disabling DNSSEC algorithms. * Preserve cache when reload fails and reload the server again. * Prevent spurious SERVFAILs for certain 0-TTL resource records. * Fix unexpected termination if catalog-zones had undefined `default-primaries`. * Stale RRsets in a CNAME chain were not always refreshed. * Add RPZ extended DNS error for zones with a CNAME override policy configured. * Fix dig +keepopen option. * Log dropped or slipped responses in the query-errors category. * Fix synth-from-dnssec not working in some scenarios. * Clean enough memory when adding new ADB names/entries under memory pressure. * Prevent spurious validation failures. * Ensure file descriptors 0-2 are in use before using libuv [bsc#1230649] ++++ kernel-64kb: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-64kb: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-default: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-default: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-rt: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-rt: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ dtb-aarch64: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ dtb-aarch64: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ gpgme: - Treat empty DISPLAY variable as unset. [bsc#1252425, bsc#1231055] * To avoid gpgme constructing an invalid gpg command line when the DISPLAY variable is empty it can be treated as unset. * Add gpgme-Treat-empty-DISPLAY-variable-as-unset.patch * Reported upstream: dev.gnupg.org/T7919 ++++ java-17-openjdk: - Upgrade to upstream tag jdk-17.0.17+10 (October 2025 CPU) * Security fixes: + JDK-8352637: Enhance bytecode verification + JDK-8356294, CVE-2025-53066, bsc#1252417: Enhance Path Factories + JDK-8360937, CVE-2025-53057, bsc#1252414: Enhance certificate handling * Other fixes: + JDK-8042381: Test javax/swing/JRootPane/4670486/ /bug4670486.java fails with Action has not been received + JDK-8079786: [macosx] Test java/awt/Frame/DisposeParentGC/ /DisposeParentGC.java fails for Mac only + JDK-8132785: java/lang/management/ThreadMXBean/ /ThreadLists.java fails intermittently + JDK-8136895: Writer not closed with disk full error, file resource leaked + JDK-8167252: Some of Charset.availableCharsets() does not contain itself + JDK-8185429: [macos] After a modal dialog is closed, no window becomes active + JDK-8196017: java/awt/Mouse/GetMousePositionTest/ /GetMousePositionWithPopup.java fails + JDK-8202667: java/awt/Debug/DumpOnKey/DumpOnKey.java times out on Windows + JDK-8203867: Delete test java/awt/TrayIcon/ /DblClickActionEventTest/DblClickActionEventTest.html + JDK-8217914: java/net/httpclient/ /ConnectTimeoutHandshakeSync.java failed on connection refused while doing POST + JDK-8225777: java/awt/Mixing/MixingOnDialog.java fails on Ubuntu + JDK-8226919: attach in linux hangs due to permission denied accessing /proc/pid/root + JDK-8249825: Tests sun/security/ssl/SSLSocketImpl/ /SetClientMode.java and NonAutoClose.java marked with @ignore + JDK-8264207: CodeStrings does not honour fixed address assumption. + JDK-8266246: Swing test PressedIconTest.java sometimes fails on macOS 11 ARM + JDK-8266247: Swing test bug7154030.java sometimes fails on macOS 11 ARM + JDK-8273539: [PPC64] gtest build error after JDK-8264207 + JDK-8274039: codestrings gtest fails when hsdis is present + JDK-8274453: (sctp) com/sun/nio/sctp/SctpChannel/ /CloseDescriptors.java test should be resilient to lsof warnings + JDK-8275079: Remove unnecessary conversion to String in java.net.http + JDK-8276046: codestrings.validate_vm gtest fails on ppc64, s390 + JDK-8276175: codestrings.validate_vm gtest still broken on ppc64 after JDK-8276046 + JDK-8276401: Use blessed modifier order in java.net.http + JDK-8276681: Additional malformed Javadoc inline tags in JDK source + JDK-8277969: HttpClient SelectorManager shuts down when custom Executor rejects a task + JDK-8279005: sun/tools/jstat tests do not check for test case exit codes after JDK-8245129 + JDK-8280818: Expand bug8033699.java to iterate over all LaFs + JDK-8282144: RandomSupport.convertSeedBytesToLongs sign extension overwrites previous bytes + JDK-8282147: [TESTBUG] waitForIdle after creating frame in JSpinnerMouseAndKeyPressTest.java + JDK-8283467: runtime/Thread/StopAtExit.java needs updating + JDK-8285032: vmTestbase/nsk/jdi/EventSet/suspendPolicy/ /suspendpolicy008/ fails with "eventSet.suspendPolicy() != policyExpected" + JDK-8285773: Replace Algorithms.eatMemory(...) with WB.fullGC() in vmTestbase/gc/gctests/ReferencesGC/ /ReferencesGC.java + JDK-8285951: Replace Algorithms.eatMemory(...) with WB.fullGC() in vmTestbase_vm_gc_ref tests + JDK-8286171: HttpClient/2 : Expect:100-Continue blocks indefinitely when response is not 100 + JDK-8286194: ExecutorShutdown test fails intermittently + JDK-8286660: codestrings gtest fails on AArch64: "udf" in padding + JDK-8288209: SSL debug message wrong about unsupported authentication scheme + JDK-8288746: HttpClient resources could be reclaimed more eagerly + JDK-8290368: Introduce LDAP and RMI protocol-specific object factory filters to JNDI implementation + JDK-8292876: Do not include the deprecated userinfo component of the URI in HTTP/2 headers + JDK-8293713: java/net/httpclient/BufferingSubscriberTest.java fails in timeout, blocked in submission publisher + JDK-8293786: HttpClient will not send more than 64 kb of data from the 2nd request in http2 + JDK-8294509: The sign extension bug applies to 'public static int[] convertSeedBytesToInts(byte[] seed, int n, int z)' in RandomSupport + JDK-8294839: Disable StressLongCountedLoop in compiler/loopopts/TestRemoveEmptyLoop.java + JDK-8294916: Cancelling a request must eventually cause its response body subscriber to be unregistered + JDK-8294985: SSLEngine throws IAE during parsing of X500Principal + JDK-8295005: compiler/loopopts/TestRemoveEmptyLoop.java fails with release VMs after JDK-8294839 + JDK-8295210: IR framework should not whitelist -XX:-UseTLAB + JDK-8297075: java/net/httpclient/CancelStreamedBodyTest.java fails with "java.lang.AssertionError: WARNING: tracker for HttpClientImpl(1) has outstanding operations" + JDK-8297106: Remove the -Xcheck:jni local reference capacity checking + JDK-8297149: REDO JDK-8296889: Race condition when cancelling a request + JDK-8297200: java/net/httpclient/SpecialHeadersTest.java failed once in AssertionError due to selector thread remaining alive + JDK-8297424: java/net/httpclient/AsyncExecutorShutdown.java fails in AssertionError due to misplaced assert + JDK-8297499: Parallel: Missing iteration over klass when marking objArrays/objArrayOops during Full GC + JDK-8297740: runtime/ClassUnload/UnloadTest.java failed with "Test failed: should still be live" + JDK-8298340: java/net/httpclient/CancelRequestTest.java fails with AssertionError: Found some subscribers for testPostInterrupt + JDK-8298514: vmTestbase/nsk/jdi/EventRequestManager/ /threadDeathRequests/thrdeathreq002/TestDescription.java fails with usage tracker + JDK-8298907: nsk JDI tests pass if the debuggee failed to launch + JDK-8298931: java/net/httpclient/CancelStreamedBodyTest.java fails with AssertionError due to Pending TCP connections: 1 + JDK-8299338: AssertionError in ResponseSubscribers$HttpResponseInputStream::onSubscribe + JDK-8300207: Add a pre-check for the number of canonical equivalent permutations in j.u.r.Pattern + JDK-8301004: httpclient: Add more debug to HttpResponseInputStream + JDK-8301169: java/net/httpclient/ /ThrowingSubscribersAsInputStream.java, ThrowingSubscribersAsInputStreamAsync.java, and other httpclient tests failing on windows: Unable to establish loopback connection + JDK-8301255: Http2Connection may send too many GOAWAY frames + JDK-8302635: Race condition in HttpBodySubscriberWrapper when cancelling request + JDK-8303525: Refactor/cleanup open/test/jdk/javax/rmi/ssl/ /SSLSocketParametersTest.java + JDK-8307648: java/net/httpclient/ExpectContinueTest.java timed out + JDK-8308185: Update Http2TestServerConnection to use SSLSocket.startHandshake() + JDK-8312191: ColorConvertOp.filter for the default destination is too slow + JDK-8312475: org.jline.util.PumpReader signed byte problem + JDK-8313083: Print 'rss' and 'cache' as part of the container information + JDK-8313367: SunMSCAPI cannot read Local Computer certs w/o Windows elevation + JDK-8314611: Provide more explicative error message parsing Currencies + JDK-8314978: Multiple server call from connection failing with expect100 in getOutputStream + JDK-8315505: CompileTask timestamp printed can overflow + JDK-8316580: HttpClient with StructuredTaskScope does not close when a task fails + JDK-8317522: Test logic for BODY_CF in AbstractThrowingSubscribers.java is wrong + JDK-8317804: com/sun/jdi/JdwpAllowTest.java fails on Alpine 3.17 / 3.18 + JDK-8317808: HTTP/2 stream cancelImpl may leave subscriber registered + JDK-8319174: Enhance robustness of some j.m.BigInteger constructors + JDK-8319932: [JVMCI] class unloading related tests can fail on libgraal + JDK-8320858: Move jpackage tests to tier3 + JDK-8325910: Rename jnihelper.h + JDK-8326606: Test javax/swing/text/BoxView/6494356/ /bug6494356.java performs a synchronization on a value based class + JDK-8327750: Convert javax/swing/JFileChooser/ /FileFilterDescription/FileFilterDescription.java applet test to main + JDK-8327751: Convert javax/swing/JInternalFrame/6726866/ /bug6726866.java applet test to main + JDK-8327752: Convert javax/swing/JOptionPane/4174551/ /bug4174551.java applet to main + JDK-8327753: Convert javax/swing/JOptionPane/8024926/ /bug8024926.java applet to main + JDK-8327754: Convert javax/swing/JPopupMenu/7160604/ /bug7160604.java applet to main + JDK-8327755: Convert javax/swing/JScrollBar/8039464/ /Test8039464.java applet to main + JDK-8327756: Convert javax/swing/JSlider/4987336/ /bug4987336.java applet to main + JDK-8327826: Convert javax/swing/border/Test4243289.java applet test to main + JDK-8327835: Convert java/awt/FileDialog/RegexpFilterTest/ /RegexpFilterTest applet test to main + JDK-8327838: Convert java/awt/FileDialog/MultipleMode/ /MultipleMode.html applet test to main + JDK-8327872: Convert javax/swing/JToolTip/4644444/ /bug4644444.java applet test to main + JDK-8327873: Convert javax/swing/border/Test4247606.java applet test to main + JDK-8327874: Convert javax/swing/JTree/4314199/bug4314199.java applet test to main + JDK-8327876: Convert javax/swing/border/Test4252164.java applet test to main + JDK-8327879: Convert javax/swing/border/Test4760089.java applet test to main + JDK-8327969: Convert javax/swing/border/Test6910490.java applet test to main + JDK-8327972: Convert java/awt/FileDialog/ /SaveFileNameOverrideTest/SaveFileNameOverrideTest.html applet test to main + JDK-8328000: Convert /java/awt/im/8154816/bug8154816.java applet test to main + JDK-8328012: Convert InputMethod (/java/awt/im) applet tests to main + JDK-8328030: Convert javax/swing/text/GlyphView/4984669/ /bug4984669.java applet test to main + JDK-8328035: Convert javax/swing/text/html/TableView/7030332/ /bug7030332.java applet test to main + JDK-8328087: Automate javax/swing/JTable/TAB/TAB.java applet test + JDK-8328089: Automate javax/swing/JTable/4222153/ /bug4222153.java applet test + JDK-8328154: Convert sun/java2d/loops/CopyAreaSpeed.java applet test to main + JDK-8328190: Convert AWTPanelSmoothWheel.html applet test to main + JDK-8328225: Convert ImageDecoratedDnD.html applet test to main + JDK-8328244: Convert javax/swing/JSlider/6742358/ /bug6742358.java applet test to main + JDK-8328248: Convert javax/swing/JSlider/6587742/ /bug6587742.java applet test to main + JDK-8328262: Convert javax/swing/JSplitPane/8132123/ /bug8132123.java applet test to main + JDK-8328279: Convert java/awt/Cursor/ /CursorOverlappedPanelsTest test to main + JDK-8328328: Convert javax/swing/JTabbedPane/4666224/ /bug4666224.java applet test to main + JDK-8328367: Convert java/awt/Component/UpdatingBootTime test to main + JDK-8328378: Convert java/awt/FileDialog/ /FileDialogForDirectories test to main + JDK-8328382: Convert java/awt/FileDialog/FileDialogForPackages test to main + JDK-8328384: Convert java/awt/FileDialog/FileDialogOpenDirTest test to main + JDK-8328385: Convert java/awt/FileDialog/FileDialogReturnTest test to main + JDK-8328386: Convert java/awt/FileDialog/FileNameOverrideTest test to main + JDK-8328398: Convert java/awt/im/4490692/bug4490692.html applet test to main + JDK-8328401: Convert java/awt/Frame/InitialMaximizedTest/ /InitialMaximizedTest.html applet test to automated + JDK-8328570: Convert closed JViewport manual applet tests to main + JDK-8328631: Convert java/awt/InputMethods/InputMethodsTest/ /InputMethodsTest.java applet test to manual + JDK-8330022: Failure test/hotspot/jtreg/vmTestbase/nsk/ /sysdict/share/BTreeTest.java: Could not initialize class java.util.concurrent.ThreadLocalRandom + JDK-8330106: C2: VectorInsertNode::make() shouldn't call ConINode::make() directly + JDK-8330535: Update nsk/jdb tests to use driver instead of othervm + JDK-8332252: Clean up vmTestbase/vm/share + JDK-8332494: java/util/zip/EntryCount64k.java failing with java.lang.RuntimeException: '\\A\\Z' missing from stderr + JDK-8332551: Test vmTestbase/nsk/monitoring/ /MemoryNotificationInfo/from/from001/TestDescription.java timed out + JDK-8334016: Make PrintNullString.java automatic + JDK-8334320: Replace vmTestbase/metaspace/share/ /TriggerUnloadingWithWhiteBox.java with ClassUnloadCommon from testlibrary + JDK-8334394: Race condition in Class::protectionDomain + JDK-8334457: Test javax/swing/JTabbedPane/bug4666224.java fail on macOS with because pressing the ‘C’ key does not switch the layout to WRAP_TAB_LAYOUT + JDK-8335131: Test "javax/swing/JColorChooser/Test6977726.java" failed on ubuntu x64 because "Preview" title is missing for GTK L&F + JDK-8335181: Incorrect handling of HTTP/2 GOAWAY frames in HttpClient + JDK-8335252: Reduce size of j.u.Formatter.Conversion#isValid + JDK-8335468: [XWayland] JavaFX hangs when calling java.awt.Robot.getPixelColor + JDK-8336499: Failure when creating non-CRT RSA private keys in SunPKCS11 + JDK-8337506: Disable "best-fit" mapping on Windows command line + JDK-8339561: The test/jdk/java/awt/Paint/ListRepaint.java may fail after JDK-8327401 + JDK-8339725: Concurrent GC crashed due to GetMethodDeclaringClass + JDK-8339834: Replace usages of -mx and -ms in some tests + JDK-8340146: ZGC: TestAllocateHeapAt.java should not run with UseLargePages + JDK-8340185: Use make -k on GHA to catch more build errors + JDK-8340389: vmTestbase/gc/gctests/PhantomReference/ /phantom001/TestDescription.java Test exit code: 97 with - Xcomp UseAVX=3 + JDK-8340554: Improve MessageFormat readObject checks + JDK-8341311: [Accessibility,macOS,VoiceOver] VoiceOver announces incorrect number of items in submenu of JPopupMenu + JDK-8341370: Test java/awt/Frame/ShapeNotSetSometimes/ /ShapeNotSetSometimes.java fails intermittently on macOS-aarch64 + JDK-8341964: Add mechanism to disable different parts of TLS cipher suite + JDK-8342075: HttpClient: improve HTTP/2 flow control checks + JDK-8342330: C2: "node pinned on loop exit test?" assert failure + JDK-8343074: test/jdk/com/sun/net/httpserver/docs/test1/ /largefile.txt could be generated + JDK-8343618: Stack smashing in awt_InputMethod.c on Linux s390x + JDK-8343804: Show the default time zone with -XshowSettings option + JDK-8343855: HTTP/2 ConnectionWindowUpdateSender may miss some unprocessed DataFrames from closed streams + JDK-8343977: Convert java/awt/TextArea/TextAreaCursorTest/ /HoveringAndDraggingTest to main + JDK-8344137: Update XML Security for Java to 3.0.5 + JDK-8344338: javax/swing/JTextArea/bug4265784.java fails on Ubuntu 24.04.1 + JDK-8344671: Few JFR streaming tests fail with application not alive error on MacOS 15 + JDK-8345173: BlockLocationPrinter::print_location misses a ResourceMark + JDK-8345471: Clean up compiler/intrinsics/sha/cli tests + JDK-8345566: Deproblemlist test/jdk/javax/swing/JComboBox/ /6559152/bug6559152.java + JDK-8345767: javax/swing/JSplitPane/4164779/ /JSplitPaneKeyboardNavigationTest.java fails in ubuntu22.04 + JDK-8346285: Update jarsigner compatibility test for change in default digest algorithm + JDK-8346751: Internal java compiler error with type annotations in constants expression in constant fields + JDK-8346871: Improve robustness of java/util/zip/ /EntryCount64k.java test + JDK-8346998: Test nsk/jvmti/ResourceExhausted/resexhausted003 fails with java.lang.OutOfMemoryError when CDS is off + JDK-8347004: vmTestbase/metaspace/shrink_grow/ShrinkGrowTest/ /ShrinkGrowTest.java fails with CDS disabled + JDK-8347302: Mark test tools/jimage/JImageToolTest.java as flagless + JDK-8347373: HTTP/2 flow control checks may count unprocessed data twice + JDK-8347381: Upgrade jQuery UI to version 1.14.1 + JDK-8348328: Update IANA Language Subtag Registry to Version 2025-05-15 + JDK-8348365: Bad format string in CLDRDisplayNamesTest + JDK-8348760: RadioButton is not shown if JRadioButtonMenuItem is rendered with ImageIcon in WindowsLookAndFeel + JDK-8349151: Refactor test/java/security/cert/ /CertificateFactory/slowstream.sh to java test + JDK-8349214: Improve size optimization flags for MSVC builds + JDK-8349583: Add mechanism to disable signature schemes based on their TLS scope + JDK-8349849: PKCS11 SunTlsKeyMaterial crashes when used with TLS1.2 TlsKeyMaterialParameterSpec + JDK-8350483: AArch64: turn on signum intrinsics by default on Ampere CPUs + JDK-8350582: Correct the parsing of the ssl value in javax.net.debug + JDK-8350767: Fix -Wzero-as-null-pointer-constant warnings in nsk jni stress tests + JDK-8350807: Certificates using MD5 algorithm that are disabled by default are incorrectly allowed in TLSv1.3 when re-enabled + JDK-8350830: Values converted incorrectly when reading TLS session tickets + JDK-8350964: Add an ArtifactResolver.fetch(clazz) method + JDK-8351277: Remove pipewire from AIX build + JDK-8351601: [JMH] test UnixSocketChannelReadWrite failed for 2 threads config + JDK-8351884: Refactor bug8033699.java test code + JDK-8351907: [XWayland] [OL10] Robot.mousePress() is delivered to wrong place + JDK-8351933: Inaccurate masking of TC subfield decrement in ForkJoinPool + JDK-8351997: AArch64: Interpreter volatile reference stores with G1 are not sequentially consistent + JDK-8352509: Update jdk.test.lib.SecurityTools jar method to accept List parameter + JDK-8352624: Add missing {@code} to PassFailJFrame.Builder.splitUI + JDK-8352677: Opensource JMenu tests - series2 + JDK-8352719: Add an equals sign to the modules statement + JDK-8352860: Open source events tests batch0 + JDK-8352879: TestPeriod.java and TestGetContentType.java run wrong test class + JDK-8352895: UserCookie.java runs wrong test class + JDK-8352896: LambdaExpr02.java runs wrong test class + JDK-8352946: SEGV_BND signal code of SIGSEGV missing from our signal-code table + JDK-8353000: Open source several swing tests batch2 + JDK-8353126: Open source events tests batch1 + JDK-8353213: Open source several swing tests batch3 + JDK-8353235: Test jdk/jfr/api/metadata/annotations/ /TestPeriod.java fails with IllegalArgumentException + JDK-8353293: Open source several swing tests batch4 + JDK-8353304: Open source two JTabbedPane tests + JDK-8353489: Increase timeout and improve Windows compatibility in test/jdk/java/lang/ProcessBuilder/Basic.java + JDK-8353549: Open source events tests batch2 + JDK-8353568: SEGV_BNDERR signal code adjust definition + JDK-8353655: Clean up and open source KeyEvent related tests (Part 1) + JDK-8353662: Add test for non-local file URL fallback to FTP + JDK-8353713: Improve Currency.getInstance exception handling + JDK-8353748: Open source several swing tests batch6 + JDK-8354285: Open source Swing tests Batch 3 + JDK-8354327: Rewrite runtime/LoadClass/LoadClassNegative.java + JDK-8354415: [Ubuntu25.04] api/java_awt/GraphicsDevice/ /indexTGF.html#SetDisplayMode - setDisplayMode_REFRESH_RATE_UNKNOWN fails: Height is different on vnc + JDK-8362390: AIX make fails in awt_GraphicsEnv.c + JDK-8354941: Build failure with glibc 2.42 due to uabs() name collision + JDK-8355051: Problemlist java/awt/Graphics2D/CopyAreaOOB.java on macosx-aarch64 + JDK-8355249: Remove the use of WMIC from the entire source code + JDK-8355262: Test sun/security/ssl/SSLSessionImpl/ /NoInvalidateSocketException.java failed: accept timed out + JDK-8355366: Fix the wrong usage of PassFailJFrame.forcePass() in some manual tests + JDK-8355370: Include server name in HTTP test server thread names to improve diagnostics + JDK-8355429: Open source ProgressMonitor test + JDK-8355441: Remove antipattern from PassFailJFrame.forcePass javadoc + JDK-8355453: nsk.share.jdi.Debugee.waitingEvent() does not timeout properly + JDK-8355475: UNCTest should use an existing UNC path + JDK-8355515: Clarify the purpose of forcePass() and forceFail() methods + JDK-8355528: Update HarfBuzz to 11.2.0 + JDK-8355578: [java.net] Use @requires tag instead of exiting based on "os.name" property value + JDK-8355779: When no "signature_algorithms_cert" extension is present we do not apply certificate scope constraints to algorithms in "signature_algorithms" extension + JDK-8357173: Split jtreg test group jdk tier3 + JDK-8357253: Test test/jdk/sun/security/ssl/SSLSessionImpl/ /ResumeClientTLS12withSNI.java writes in src dir + JDK-8357285: JSR166 Test case testShutdownNow_delayedTasks failed + JDK-8357672: Extreme font sizes can cause font substitution + JDK-8357793: [PPC64] VM crashes with -XX:-UseSIGTRAP - XX:-ImplicitNullChecks + JDK-8357968: RISC-V: Interpreter volatile reference stores with G1 are not sequentially consistent + JDK-8358004: Delete applications/scimark/Scimark.java test + JDK-8358452: JNI exception pending in Java_sun_awt_screencast_ScreencastHelper_remoteDesktopKeyImpl of screencast_pipewire.c:1214 (ID: 51119) + JDK-8358538: Update GHA Windows runner to 2025 + JDK-8358617: java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java fails with 403 due to system proxies + JDK-8358660: Bump update version for OpenJDK: jdk-17.0.17 + JDK-8358697: TextLayout/MyanmarTextTest.java passes if no Myanmar font is found + JDK-8359272: Several vmTestbase/compact tests timed out on large memory machine + JDK-8360042: GHA: Bump MSVC to 14.44 + JDK-8360647: [XWayland] [OL10] NumPad keys are not triggered + JDK-8361212: Remove AffirmTrust root CAs + JDK-8361478: GHA: Use MSYS2 from GHA runners + JDK-8362390: AIX make fails in awt_GraphicsEnv.c + JDK-8362582: GHA: Increase bundle retention time to deal with infra overload better + JDK-8362839: [21u] Problem list more tests that fail in 21 and would be fixed by 8309622 + JDK-8363965: GHA: Switch cross-compiling sysroots to Debian bookworm + JDK-8365375: Method SU3.setAcceleratorSelectionForeground assigns to acceleratorForeground + JDK-8365389: Remove static color fields from SwingUtilities3 and WindowsMenuItemUI + JDK-8365811: test/jdk/java/net/CookieHandler/B6644726.java failure - "Should have 5 cookies. Got only 4, expires probably didn't parse correctly" + JDK-8367388: Tests start to fail on JDK-21 after JDK-8351907 + JDK-8368308: ISO 4217 Amendment 180 Update + JDK-8369641: [17u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.17 - Removed patches: * jdk-8354941.patch * unsigned-sni-server-name.patch + not needed with this version ++++ java-21-openjdk: - Update to upstream tag jdk-21.0.9+10 (October 2025 CPU) * Security fixes: + JDK-8352637: Enhance bytecode verification + JDK-8356294, CVE-2025-53066, bsc#1252417: Enhance Path Factories + JDK-8359454, CVE-2025-61748, bsc#1252418: Enhance String handling + JDK-8360937, CVE-2025-53057, bsc#1252414: Enhance certificate handling * Other fixes: + JDK-7036144: GZIPInputStream readTrailer uses faulty available() test for end-of-stream + JDK-8079786: [macosx] Test java/awt/Frame/DisposeParentGC/ /DisposeParentGC.java fails for Mac only + JDK-8167252: Some of Charset.availableCharsets() does not contain itself + JDK-8185429: [macos] After a modal dialog is closed, no window becomes active + JDK-8203867: Delete test java/awt/TrayIcon/ /DblClickActionEventTest/DblClickActionEventTest.html + JDK-8217914: java/net/httpclient/ /ConnectTimeoutHandshakeSync.java failed on connection refused while doing POST + JDK-8226919: attach in linux hangs due to permission denied accessing /proc/pid/root + JDK-8249825: Tests sun/security/ssl/SSLSocketImpl/ /SetClientMode.java and NonAutoClose.java marked with @ignore + JDK-8259540: MissingResourceException for key cvc-complex-type.2.4.d.1 + JDK-8261242: [Linux] OSContainer::is_containerized() returns true when run outside a container + JDK-8279005: sun/tools/jstat tests do not check for test case exit codes after JDK-8245129 + JDK-8280818: Expand bug8033699.java to iterate over all LaFs + JDK-8293713: java/net/httpclient/BufferingSubscriberTest.java fails in timeout, blocked in submission publisher + JDK-8302293: jar --create fails with IllegalArgumentException if archive name is shorter than 3 characters + JDK-8302744: Refactor Hotspot container detection code + JDK-8304674: File java.c compile error with - fsanitize=address -O0 + JDK-8308633: Increase precision of timestamps in g1 log + JDK-8309238: jdk/jfr/tool/TestView.java failed with "exitValue = 134" + JDK-8309627: Incorrect sorting of DirtyCardQueue buffers + JDK-8309899: Rename PtrQueueSet::buffer_size() + JDK-8310264: In PhaseChaitin::Split defs and phis are leaked + JDK-8310974: NMT: Arena diffs miss the scale + JDK-8311644: Server should not send bad_certificate alert when the client does not send any certificates + JDK-8313083: Print 'rss' and 'cache' as part of the container information + JDK-8313355: javax/management/remote/mandatory/notif/ /ListenerScaleTest.java failed with "Exception: Failed: ratio=792.2791601423487" + JDK-8313367: SunMSCAPI cannot read Local Computer certs w/o Windows elevation + JDK-8314166: Update googletest to v1.14.0 + JDK-8314611: Provide more explicative error message parsing Currencies + JDK-8314978: Multiple server call from connection failing with expect100 in getOutputStream + JDK-8319067: ProblemList serviceability/AsyncGetCallTrace/ /MyPackage/ASGCTBaseTest.java on linux-aarch64 in Xcomp mode + JDK-8319174: Enhance robustness of some j.m.BigInteger constructors + JDK-8319598: SMFParser misinterprets interrupted running status + JDK-8319932: [JVMCI] class unloading related tests can fail on libgraal + JDK-8320189: vmTestbase/nsk/jvmti/scenarios/bcinstr/BI02/ /bi02t001 memory corruption when using -Xcheck:jni + JDK-8320769: Remove ill-adviced "make install" target + JDK-8320858: Move jpackage tests to tier3 + JDK-8320859: gtest high malloc footprint caused by BufferNodeAllocator stress test + JDK-8322420: [Linux] cgroup v2: Limits in parent nested control groups are not detected + JDK-8322992: Javac fails with StackOverflowError when compiling deeply nested synchronized blocks + JDK-8325397: sun/java2d/Disposer/TestDisposerRace.java fails in linux-aarch64 + JDK-8326606: Test javax/swing/text/BoxView/6494356/ /bug6494356.java performs a synchronization on a value based class + JDK-8326705: Test CertMsgCheck.java fails to find alert certificate_required + JDK-8327125: SpinYield.report should report microseconds + JDK-8327748: Convert javax/swing/JFileChooser/6798062/ /bug6798062.java applet test to main + JDK-8327750: Convert javax/swing/JFileChooser/ /FileFilterDescription/FileFilterDescription.java applet test to main + JDK-8327751: Convert javax/swing/JInternalFrame/6726866/ /bug6726866.java applet test to main + JDK-8327752: Convert javax/swing/JOptionPane/4174551/ /bug4174551.java applet to main + JDK-8327753: Convert javax/swing/JOptionPane/8024926/ /bug8024926.java applet to main + JDK-8327754: Convert javax/swing/JPopupMenu/7160604/ /bug7160604.java applet to main + JDK-8327755: Convert javax/swing/JScrollBar/8039464/ /Test8039464.java applet to main + JDK-8327756: Convert javax/swing/JSlider/4987336/ /bug4987336.java applet to main + JDK-8327826: Convert javax/swing/border/Test4243289.java applet test to main + JDK-8327835: Convert java/awt/FileDialog/RegexpFilterTest/ /RegexpFilterTest applet test to main + JDK-8327838: Convert java/awt/FileDialog/MultipleMode/ /MultipleMode.html applet test to main + JDK-8327872: Convert javax/swing/JToolTip/4644444/ /bug4644444.java applet test to main + JDK-8327873: Convert javax/swing/border/Test4247606.java applet test to main + JDK-8327874: Convert javax/swing/JTree/4314199/ /bug4314199.java applet test to main + JDK-8327876: Convert javax/swing/border/Test4252164.java applet test to main + JDK-8327879: Convert javax/swing/border/Test4760089.java applet test to main + JDK-8327969: Convert javax/swing/border/Test6910490.java applet test to main + JDK-8327972: Convert java/awt/FileDialog/ /SaveFileNameOverrideTest/SaveFileNameOverrideTest.html applet test to main + JDK-8328000: Convert /java/awt/im/8154816/bug8154816.java applet test to main + JDK-8328012: Convert InputMethod (/java/awt/im) applet tests to main + JDK-8328030: Convert javax/swing/text/GlyphView/4984669/ /bug4984669.java applet test to main + JDK-8328035: Convert javax/swing/text/html/TableView/7030332/ /bug7030332.java applet test to main + JDK-8328087: Automate javax/swing/JTable/TAB/TAB.java applet test + JDK-8328089: Automate javax/swing/JTable/4222153/ /bug4222153.java applet test + JDK-8328154: Convert sun/java2d/loops/CopyAreaSpeed.java applet test to main + JDK-8328190: Convert AWTPanelSmoothWheel.html applet test to main + JDK-8328225: Convert ImageDecoratedDnD.html applet test to main + JDK-8328244: Convert javax/swing/JSlider/6742358/ /bug6742358.java applet test to main + JDK-8328248: Convert javax/swing/JSlider/6587742/ /bug6587742.java applet test to main + JDK-8328262: Convert javax/swing/JSplitPane/8132123/ /bug8132123.java applet test to main + JDK-8328279: Convert java/awt/Cursor/ /CursorOverlappedPanelsTest test to main + JDK-8328328: Convert javax/swing/JTabbedPane/4666224/ /bug4666224.java applet test to main + JDK-8328367: Convert java/awt/Component/UpdatingBootTime test to main + JDK-8328378: Convert java/awt/FileDialog/ /FileDialogForDirectories test to main + JDK-8328382: Convert java/awt/FileDialog/FileDialogForPackages test to main + JDK-8328384: Convert java/awt/FileDialog/FileDialogOpenDirTest test to main + JDK-8328385: Convert java/awt/FileDialog/FileDialogReturnTest test to main + JDK-8328386: Convert java/awt/FileDialog/FileNameOverrideTest test to main + JDK-8328398: Convert java/awt/im/4490692/bug4490692.html applet test to main + JDK-8328401: Convert java/awt/Frame/InitialMaximizedTest/ /InitialMaximizedTest.html applet test to automated + JDK-8328570: Convert closed JViewport manual applet tests to main + JDK-8328631: Convert java/awt/InputMethods/InputMethodsTest/ /InputMethodsTest.java applet test to manual + JDK-8330022: Failure test/hotspot/jtreg/vmTestbase/nsk/ /sysdict/share/BTreeTest.java: Could not initialize class java.util.concurrent.ThreadLocalRandom + JDK-8330535: Update nsk/jdb tests to use driver instead of othervm + JDK-8331389: runtime/ErrorHandling/TestDwarf.java fails with "Crash JVM should not exit gracefully" + JDK-8331560: Refactor Hotspot container detection code so that subsystem delegates to controllers + JDK-8332020: jwebserver tool prints invalid URL in case of IPv6 address binding + JDK-8332271: Reading data from the clipboard from multiple threads crashes the JVM + JDK-8332368: ubsan aarch64: immediate_aarch64.cpp:298:31: runtime error: shift exponent 32 is too large for 32-bit type 'int' + JDK-8332551: Test vmTestbase/nsk/monitoring/ /MemoryNotificationInfo/from/from001/TestDescription.java timed out + JDK-8332857: Test vmTestbase/nsk/jvmti/GetThreadCpuTime/ /thrcputime002/TestDescription.java failed + JDK-8333326: Linux Alpine build fails after 8302744 + JDK-8333446: Add tests for hierarchical container support + JDK-8334010: VM crashes with ObjectAlignmentInBytes > GCCardSizeInBytes + JDK-8334016: Make PrintNullString.java automatic + JDK-8334320: Replace vmTestbase/metaspace/share/ /TriggerUnloadingWithWhiteBox.java with ClassUnloadCommon from testlibrary + JDK-8334394: Race condition in Class::protectionDomain + JDK-8334457: Test javax/swing/JTabbedPane/bug4666224.java fail on macOS with because pressing the ‘C’ key does not switch the layout to WRAP_TAB_LAYOUT + JDK-8335131: Test "javax/swing/JColorChooser/Test6977726.java" failed on ubuntu x64 because "Preview" title is missing for GTK L&F + JDK-8335252: Reduce size of j.u.Formatter.Conversion#isValid + JDK-8335577: runtime/cds/appcds/TestParallelGCWithCDS.java still fails with JNI error + JDK-8335882: platform/cgroup/TestSystemSettings.java fails on Alpine Linux + JDK-8336635: Add IR test for Reference.refersTo intrinsic + JDK-8336702: C2 compilation fails with "all memory state should have been processed" assert + JDK-8337506: Disable "best-fit" mapping on Windows command line + JDK-8338236: Compile error in cgroup code on Linux when using clang + JDK-8338482: com/sun/jdi/ThreadMemoryLeakTest.java requires that compressed oops are enabled + JDK-8338939: Simplify processing of hidden class names + JDK-8339460: CDS error when module is located in a directory with space in the name + JDK-8339561: The test/jdk/java/awt/Paint/ListRepaint.java may fail after JDK-8327401 + JDK-8339962: Open source AWT TextField tests - Set1 + JDK-8340092: [Linux] containers/systemd/ /SystemdMemoryAwarenessTest.java failing on some systems + JDK-8340185: Use make -k on GHA to catch more build errors + JDK-8340276: Test java/lang/management/ThreadMXBean/Locks.java failed with NullPointerException + JDK-8340389: vmTestbase/gc/gctests/PhantomReference/ /phantom001/TestDescription.java Test exit code: 97 with - Xcomp UseAVX=3 + JDK-8340547: Starting many threads can delay safepoints + JDK-8340554: Improve MessageFormat readObject checks + JDK-8341178: TypeRawPtr::add_offset may be "miscompiled" due to UB + JDK-8341311: [Accessibility,macOS,VoiceOver] VoiceOver announces incorrect number of items in submenu of JPopupMenu + JDK-8341370: Test java/awt/Frame/ShapeNotSetSometimes/ /ShapeNotSetSometimes.java fails intermittently on macOS-aarch64 + JDK-8341644: Compile error in cgroup coding when using toolchain clang + JDK-8341684: Typo in External Specifications link of java.util.Currency + JDK-8341861: GHA: Use only retention mechanism to remove bundles + JDK-8341964: Add mechanism to disable different parts of TLS cipher suite + JDK-8342074: Fix runtime/Thread/TestAlwaysPreTouchStacks.java to be flagless or accept VM flags + JDK-8342238: Test javax/crypto/CryptoPermissions/ /InconsistentEntries.java writes files in tested JDK dir + JDK-8342330: C2: "node pinned on loop exit test?" assert failure + JDK-8342782: AWTEventMulticaster throws StackOverflowError using AquaButtonUI + JDK-8343074: test/jdk/com/sun/net/httpserver/docs/test1/ /largefile.txt could be generated + JDK-8343452: Incorrect WINDOWS build variable is used in macroAssembler_x86.cpp + JDK-8343607: C2: Shenandoah crashes during barrier expansion in Continuation::enter + JDK-8343618: Stack smashing in awt_InputMethod.c on Linux s390x + JDK-8343804: Show the default time zone with -XshowSettings option + JDK-8343977: Convert java/awt/TextArea/TextAreaCursorTest/ /HoveringAndDraggingTest to main + JDK-8344137: Update XML Security for Java to 3.0.5 + JDK-8344338: javax/swing/JTextArea/bug4265784.java fails on Ubuntu 24.04.1 + JDK-8344671: Few JFR streaming tests fail with application not alive error on MacOS 15 + JDK-8345173: BlockLocationPrinter::print_location misses a ResourceMark + JDK-8345337: JFR: jfr view should display all direct subfields for an event type + JDK-8345471: Clean up compiler/intrinsics/sha/cli tests + JDK-8345566: Deproblemlist test/jdk/javax/swing/JComboBox/6559152/bug6559152.java + JDK-8345767: javax/swing/JSplitPane/4164779/ /JSplitPaneKeyboardNavigationTest.java fails in ubuntu22.04 + JDK-8346255: java/lang/management/ThreadMXBean/ /VirtualThreadDeadlocks.java finds no deadlock + JDK-8346285: Update jarsigner compatibility test for change in default digest algorithm + JDK-8346751: Internal java compiler error with type annotations in constants expression in constant fields + JDK-8346871: Improve robustness of java/util/zip/EntryCount64k.java test + JDK-8346929: runtime/ClassUnload/DictionaryDependsTest.java fails with "Test failed: should be unloaded" + JDK-8346998: Test nsk/jvmti/ResourceExhausted/resexhausted003 fails with java.lang.OutOfMemoryError when CDS is off + JDK-8347004: vmTestbase/metaspace/shrink_grow/ShrinkGrowTest/ /ShrinkGrowTest.java fails with CDS disabled + JDK-8347299: Add annotations to test cases in LicenseTest + JDK-8347302: Mark test tools/jimage/JImageToolTest.java as flagless + JDK-8347381: Upgrade jQuery UI to version 1.14.1 + JDK-8347564: ZGC: Crash in DependencyContext::clean_unloading_dependents + JDK-8347826: Introspector shows wrong method list after 8071693 + JDK-8347840: Fix testlibrary compilation warnings + JDK-8348135: Fix couple of problem listing entries in test/hotspot/jtreg/ProblemList-Virtual.txt + JDK-8348328: Update IANA Language Subtag Registry to Version 2025-05-15 + JDK-8348365: Bad format string in CLDRDisplayNamesTest + JDK-8348760: RadioButton is not shown if JRadioButtonMenuItem is rendered with ImageIcon in WindowsLookAndFeel + JDK-8349151: Refactor test/java/security/cert/ /CertificateFactory/slowstream.sh to java test + JDK-8349214: Improve size optimization flags for MSVC builds + JDK-8349378: Build splashscreen lib with SIZE optimization + JDK-8349583: Add mechanism to disable signature schemes based on their TLS scope + JDK-8349849: PKCS11 SunTlsKeyMaterial crashes when used with TLS1.2 TlsKeyMaterialParameterSpec + JDK-8350106: [PPC] Avoid ticks_unknown_not_Java AsyncGetCallTrace() if JavaFrameAnchor::_last_Java_pc not set + JDK-8350111: [PPC] AsyncGetCallTrace crashes when called while handling SIGTRAP + JDK-8350456: Test javax/crypto/CryptoPermissions/ /InconsistentEntries.java crashed: EXCEPTION_ACCESS_VIOLATION + JDK-8350582: Correct the parsing of the ssl value in javax.net.debug + JDK-8350665: SIZE_FORMAT_HEX macro undefined in gtest + JDK-8350767: Fix -Wzero-as-null-pointer-constant warnings in nsk jni stress tests + JDK-8350807: Certificates using MD5 algorithm that are disabled by default are incorrectly allowed in TLSv1.3 when re-enabled + JDK-8350830: Values converted incorrectly when reading TLS session tickets + JDK-8350858: [IR Framework] Some tests failed on Cascade Lake + JDK-8350964: Add an ArtifactResolver.fetch(clazz) method + JDK-8351277: Remove pipewire from AIX build + JDK-8351487: [ubsan] jvmti.h runtime error: load of value which is not a valid value + JDK-8351491: Add info from release file to hserr file + JDK-8351593: [JMH] test PhoneCode.Bulk reports NPE exception + JDK-8351601: [JMH] test UnixSocketChannelReadWrite failed for 2 threads config + JDK-8351884: Refactor bug8033699.java test code + JDK-8351907: [XWayland] [OL10] Robot.mousePress() is delivered to wrong place + JDK-8351997: AArch64: Interpreter volatile reference stores with G1 are not sequentially consistent + JDK-8352509: Update jdk.test.lib.SecurityTools jar method to accept List parameter + JDK-8352624: Add missing {@code} to PassFailJFrame.Builder.splitUI + JDK-8352677: Opensource JMenu tests - series2 + JDK-8352719: Add an equals sign to the modules statement + JDK-8352765: G1CollectedHeap::expand_and_allocate() may fail to allocate even after heap expansion succeeds + JDK-8352800: [PPC] OpenJDK fails to build on PPC after JDK-8350106 + JDK-8352860: Open source events tests batch0 + JDK-8352879: TestPeriod.java and TestGetContentType.java run wrong test class + JDK-8352895: UserCookie.java runs wrong test class + JDK-8352896: LambdaExpr02.java runs wrong test class + JDK-8352946: SEGV_BND signal code of SIGSEGV missing from our signal-code table + JDK-8353000: Open source several swing tests batch2 + JDK-8353126: Open source events tests batch1 + JDK-8353213: Open source several swing tests batch3 + JDK-8353235: Test jdk/jfr/api/metadata/annotations/ /TestPeriod.java fails with IllegalArgumentException + JDK-8353293: Open source several swing tests batch4 + JDK-8353304: Open source two JTabbedPane tests + JDK-8353489: Increase timeout and improve Windows compatibility in test/jdk/java/lang/ProcessBuilder/Basic.java + JDK-8353549: Open source events tests batch2 + JDK-8353568: SEGV_BNDERR signal code adjust definition + JDK-8353655: Clean up and open source KeyEvent related tests (Part 1) + JDK-8353662: Add test for non-local file URL fallback to FTP + JDK-8353698: Output of Simple Web Server is garbled if the console's encoding is not UTF-8 + JDK-8353713: Improve Currency.getInstance exception handling + JDK-8353748: Open source several swing tests batch6 + JDK-8353847: Remove extra args to System.out.printf in open/test/jdk/java/net/httpclient tests + JDK-8353950: Clipboard interaction on Windows is unstable + JDK-8354285: Open source Swing tests Batch 3 + JDK-8354327: Rewrite runtime/LoadClass/LoadClassNegative.java + JDK-8354415: [Ubuntu25.04] api/java_awt/GraphicsDevice/ /indexTGF.html#SetDisplayMode - setDisplayMode_REFRESH_RATE_UNKNOWN fails: Height is different on vnc + JDK-8354941: Build failure with glibc 2.42 due to uabs() name collision + JDK-8355051: Problemlist java/awt/Graphics2D/CopyAreaOOB.java on macosx-aarch64 + JDK-8355249: Remove the use of WMIC from the entire source code + JDK-8355262: Test sun/security/ssl/SSLSessionImpl/ /NoInvalidateSocketException.java failed: accept timed out + JDK-8355366: Fix the wrong usage of PassFailJFrame.forcePass() in some manual tests + JDK-8355370: Include server name in HTTP test server thread names to improve diagnostics + JDK-8355429: Open source ProgressMonitor test + JDK-8355441: Remove antipattern from PassFailJFrame.forcePass javadoc + JDK-8355453: nsk.share.jdi.Debugee.waitingEvent() does not timeout properly + JDK-8355475: UNCTest should use an existing UNC path + JDK-8355512: Test compiler/vectorization/ /TestVectorZeroCount.java times out with - XX:TieredStopAtLevel=3 + JDK-8355515: Clarify the purpose of forcePass() and forceFail() methods + JDK-8355528: Update HarfBuzz to 11.2.0 + JDK-8355578: [java.net] Use @requires tag instead of exiting based on "os.name" property value + JDK-8355779: When no "signature_algorithms_cert" extension is present we do not apply certificate scope constraints to algorithms in "signature_algorithms" extension + JDK-8355979: ATTRIBUTE_NO_UBSAN needs to be extended to handle float divisions by zero on AIX + JDK-8356269: Fix broken web-links after JDK-8295470 + JDK-8356324: JVM crash (SIGSEGV at ClassListParser::resolve_indy_impl) during -Xshare:dump starting from 21.0.5 + JDK-8356778: Compiler add event logging in case of failures + JDK-8357155: [asan] ZGC does not work (x86_64 and ppc64) + JDK-8357173: Split jtreg test group jdk tier3 + JDK-8357194: [21u] lible cannot find the path of libjava + JDK-8357253: Test test/jdk/sun/security/ssl/SSLSessionImpl/ /ResumeClientTLS12withSNI.java writes in src dir + JDK-8357285: JSR166 Test case testShutdownNow_delayedTasks failed + JDK-8357672: Extreme font sizes can cause font substitution + JDK-8357675: Amend headless message + JDK-8357793: [PPC64] VM crashes with -XX:-UseSIGTRAP - XX:-ImplicitNullChecks + JDK-8357826: Avoid running some jtreg tests when asan is configured + JDK-8357910: LoaderConstraintsTest.java fails when run with TEST_THREAD_FACTORY=Virtual + JDK-8357914: TestEmptyBootstrapMethodsAttr.java fails when run with TEST_THREAD_FACTORY=Virtual + JDK-8357968: RISC-V: Interpreter volatile reference stores with G1 are not sequentially consistent + JDK-8358004: Delete applications/scimark/Scimark.java test + JDK-8358136: Make langtools/jdk/javadoc/doclet/ /testLinkOption/TestRedirectLinks.java intermittent + JDK-8358310: ZGC: riscv, ppc ZPlatformAddressOffsetBits may return a too large value + JDK-8358334: C2/Shenandoah: incorrect execution with Unsafe + JDK-8358452: JNI exception pending in Java_sun_awt_screencast_ScreencastHelper_remoteDesktopKeyImpl of screencast_pipewire.c:1214 (ID: 51119) + JDK-8358534: Bailout in Conv2B::Ideal when type of cmp input is not supported + JDK-8358538: Update GHA Windows runner to 2025 + JDK-8358617: java/net/HttpURLConnection/ /HttpURLConnectionExpectContinueTest.java fails with 403 due to system proxies + JDK-8358659: Bump update version for OpenJDK: jdk-21.0.9 + JDK-8358697: TextLayout/MyanmarTextTest.java passes if no Myanmar font is found + JDK-8358701: Remove misleading javax.management.remote API doc wording about JMX spec, and historic link to JMXMP + JDK-8359272: Several vmTestbase/compact tests timed out on large memory machine + JDK-8359402: Test CloseDescriptors.java should throw SkippedException when there is no lsof/sctp + JDK-8359906: [21u] [BACKOUT] 8347299: Add annotations to test cases in LicenseTest + JDK-8360042: GHA: Bump MSVC to 14.44 + JDK-8360518: Docker tests do not work when asan is configured + JDK-8360647: [XWayland] [OL10] NumPad keys are not triggered + JDK-8361198: [AIX] fix misleading error output in thread_cpu_time_unchecked + JDK-8361212: Remove AffirmTrust root CAs + JDK-8361328: cds/appcds/dynamicArchive/ /TestAutoCreateSharedArchive.java archive timestamps comparison failed + JDK-8361478: GHA: Use MSYS2 from GHA runners + JDK-8361959: [GCC static analyzer] java_props_md.c leak of 'temp' variable is reported + JDK-8362390: AIX make fails in awt_GraphicsEnv.c + JDK-8362548: [21u] Add bugId to test missed in backport of JDK-8343804 + JDK-8362582: GHA: Increase bundle retention time to deal with infra overload better + JDK-8362838: RISC-V: Incorrect matching rule leading to improper oop instruction encoding + JDK-8362839: [21u] Problem list more tests that fail in 21 and would be fixed by 8309622 + JDK-8362855: Test java/net/ipv6tests/TcpTest.java should report SkippedException when there no ia4addr or ia6addr + JDK-8363965: GHA: Switch cross-compiling sysroots to Debian bookworm + JDK-8365375: Method SU3.setAcceleratorSelectionForeground assigns to acceleratorForeground + JDK-8365389: Remove static color fields from SwingUtilities3 and WindowsMenuItemUI + JDK-8365811: test/jdk/java/net/CookieHandler/B6644726.java failure - "Should have 5 cookies. Got only 4, expires probably didn't parse correctly" + JDK-8367388: Tests start to fail on JDK-21 after JDK-8351907 + JDK-8368308: ISO 4217 Amendment 180 Update + JDK-8369643: [21u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 21.0.9 - Removed patches: * jdk-8354941.patch + integrated in this version ++++ java-25-openjdk: - Update to upstream tag jdk-25.0.1+8 (October 2025 CPU) * Security fixes: + JDK-8360937, CVE-2025-53057, bsc#1252414: Enhance certificate handling + JDK-8356294, CVE-2025-53066, bsc#1252417: Enhance Path Factories + JDK-8359454, CVE-2025-61748, bsc#1252418: Enhance String handling + JDK-8352637: Enhance bytecode verification * Other fixes: + JDK-8367031: [backout] Change java.time month/day field types to 'byte' + JDK-8368308: ISO 4217 Amendment 180 Update + JDK-8366223: ZGC: ZPageAllocator::cleanup_failed_commit_multi_partition is broken + JDK-8360647: [XWayland] [OL10] NumPad keys are not triggered + JDK-8361212: Remove AffirmTrust root CAs + JDK-8356587: Missing object ID X in pool jdk.types.Method + JDK-8360679: Shenandoah: AOT saved adapter calls into broken GC barrier stub + JDK-8362882: Update SubmissionPublisher() specification to reflect use of ForkJoinPool.asyncCommonPool() + JDK-8315131: Clarify VarHandle set/get access on 32-bit platforms + JDK-8362109: Change milestone to fcs for all releases + JDK-8358819: The first year is not displayed correctly in Japanese Calendar + JDK-8361829: [TESTBUG] RISC-V: compiler/vectorization/runner/ /BasicIntOpTest.java fails with RVV but not Zvbb + JDK-8361532: RISC-V: Several vector tests fail after JDK-8354383 + JDK-8357826: Avoid running some jtreg tests when asan is configured + JDK-8358577: Test serviceability/jvmti/thread/ /GetCurrentContendedMonitor/contmon01/contmon01.java failed: unexpexcted monitor object + JDK-8360533: ContainerRuntimeVersionTestUtils fromVersionString fails with some docker versions + JDK-8358452: JNI exception pending in Java_sun_awt_screencast_ScreencastHelper_remoteDesktopKeyImpl of screencast_pipewire.c:1214 (ID: 51119) + JDK-8359270: C2: alignment check should consider base offset when emitting arraycopy runtime call + JDK-8359596: Behavior change when both -Xlint:options and - Xlint:-options flags are given + JDK-8360179: RISC-V: Only enable BigInteger intrinsics when AvoidUnalignedAccess == false + JDK-8359218: RISC-V: Only enable CRC32 intrinsic when AvoidUnalignedAccess == false + JDK-8359059: Bump version numbers for 25.0.1 ++++ kernel-source: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-source: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-docs: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-docs: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-kvmsmall: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-kvmsmall: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-obs-build: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-obs-build: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-obs-qa: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-obs-qa: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-syms: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-syms: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-zfcpdump: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ kernel-zfcpdump: - net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCP_REPAIR (CVE-2025-39950 bsc#1251176). - commit cf7da46 - x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (jsc#PED-348). - Delete patches.suse/x86-virt-tdx-Mark-memory-cache-state-incoherent-when-making-seamcall.patch. - commit 4525f45 - perf hwmon_pmu: Fix uninitialized variable warning (perf-sle16-v6.13-userspace-update, git-fixes). - commit ce493c8 ++++ pciutils: - pciutils.spec: Add a strict dependency to libpci. [bsc#1252338] Mixing different versions of pciutils and libpci could result in a segmentation fault due to incompatible ABI. ++++ gpgmeqt6: - Treat empty DISPLAY variable as unset. [bsc#1252425, bsc#1231055] * To avoid gpgme constructing an invalid gpg command line when the DISPLAY variable is empty it can be treated as unset. * Add gpgme-Treat-empty-DISPLAY-variable-as-unset.patch * Reported upstream: dev.gnupg.org/T7919 ++++ micropython: - Build with mbedtls-3.6.5 instead of bundled 3.6.2 to fix CVE-2025-59438 ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ os-autoinst: - Update to version 5.1761036042.c43e4ab: * Update perltidy * Allow redirects in needle NeedleDownloader * Don't overwrite firewall xml * Add UEFI support for ipxe kernel boot * os-autoinst-setup-multi-machine: Simplify determine_ethernet_interface ++++ python-uv: - Update vendor.tar.zst to update astral-tokio-tar to 0.5.6, and tracing-subscriber (bsc#1252399, CVE-2025-62518, bsc#1249011, CVE-2025-58160) - Remove Cargo.lock modifications from CVE-2025-54368.patch to avoid conflict with vendored version. - Add revendor.sh script to help with patching Cargo.toml and revendoring. ++++ suse-migration-services: - Fix apparmor install procedure The apparmor to selinux unit install the selinux pattern after the main migration has been performed. This zypper call has to happen inside of the new root system otherwise repo access is denied on e.g cloud systems which holds the registration information in the installed system. ------------------------------------------------------------------ ------------------ 2025-10-21 - Oct 21 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ chromium: - Chromium 141.0.7390.122: * CVE-2025-12036: Inappropriate implementation in V8 (boo#1252402) ++++ kernel-64kb: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-64kb: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-default: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-default: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-rt: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-rt: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ samba: - Update to 4.22.6 * macOS Finder client DFS broken on 4.22.0; (bso#15843). * Samba 4.22 breaks Time Machine; (bso#15926). * Spotlight search restriction for shares incomplete and default search searches in too many attributes; (bso#15927). * rpcd_mdssvc may crash because name mangling is not initialized; (bso#15931). * Only increment lease epoch if a lease was granted; (bso#15933). * samba-4.21 fails to join AD when multiple DCs are returned; (bso#15905). * 'net ads group' failed to list domain groups; (bso#15900). * vfs_ceph_new should not use ceph_ll_nonblocking_readv_writev for fsync_send; (bso#15919). * CTDB_SOCKET can be used even when CTDB_TEST_MODE is not set; (bso#15921). ++++ samba: - Update to 4.22.6 * macOS Finder client DFS broken on 4.22.0; (bso#15843). * Samba 4.22 breaks Time Machine; (bso#15926). * Spotlight search restriction for shares incomplete and default search searches in too many attributes; (bso#15927). * rpcd_mdssvc may crash because name mangling is not initialized; (bso#15931). * Only increment lease epoch if a lease was granted; (bso#15933). * samba-4.21 fails to join AD when multiple DCs are returned; (bso#15905). * 'net ads group' failed to list domain groups; (bso#15900). * vfs_ceph_new should not use ceph_ll_nonblocking_readv_writev for fsync_send; (bso#15919). * CTDB_SOCKET can be used even when CTDB_TEST_MODE is not set; (bso#15921). ++++ dracut: - Update to version 059+suse.700.g40f7c5c4: Additional fixes for PXE boot with filled-in NBFT (bsc#1238848): * fix(74nvmf): make sure autoconnect script is run at least once * fix(74nvmf): only set netroot if it's yet empty ++++ dtb-aarch64: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ dtb-aarch64: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-source: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-source: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-docs: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-docs: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-kvmsmall: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-kvmsmall: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-obs-build: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-obs-build: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-obs-qa: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-obs-qa: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-syms: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-syms: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-zfcpdump: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ kernel-zfcpdump: - kbuild/modfinal: Link livepatches with module-common.o (bsc#1218644, bsc#1252270). - commit 6e2ca7b - ixgbe: fix too early devlink_free() in ixgbe_remove() (git-fixes). - ixgbe: handle IXGBE_VF_FEATURES_NEGOTIATE mbox cmd (bsc#1247222). - ixgbevf: fix mailbox API compatibility by negotiating supported features (bsc#1247222). - ixgbe: handle IXGBE_VF_GET_PF_LINK_STATE mailbox operation (bsc#1247222). - ixgbevf: fix getting link speed data for E610 devices (bsc#1247222). - commit 350b510 - btrfs: subpage: keep TOWRITE tag until folio is cleaned (bsc#1249495 CVE-2025-39779). - commit 27527fb - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path (CVE-2025-39911 bsc#1250704) - commit 963571a - sched: Fix sched_numa_find_nth_cpu() if mask offline (CVE-2025-39895 bsc#1250721) - commit 6265695 - sctp: initialize more fields in sctp_v6_from_sk() (CVE-2025-39812 bsc#1250202) - commit faea944 - of_numa: fix uninitialized memory nodes causing kernel panic (CVE-2025-39903 bsc#1250749) - commit 8722073 ++++ man-pages-posix: - use %license tag [bsc#1252161] ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ openQA: - Update to version 5.1761037330.ad78558e: * Avoid needless check for number of clones * Avoid creation of `git_clone` tasks for jobs with empty `DISTRI` ++++ powerpc-utils: - Also start smt_off service after networking (bsc#1249152 ltc#214730) * Refresh smtstate-Start-smtstate-service-after-network-target.patch * Refresh libvirt-service-dep.patch - Fix psize reporting on a CPU pool (bsc#1252108 ltc#214494) * lparstat-Use-pool_capacity-for-determining-active-cp.patch ++++ suse-migration-services: - Fixed azuremetadata device lookup On Azure the azuremetadata call is prepared with the --device option pointing to the disk containing the system. This disk device is obtained via the get_root_disk_device method which makes use of the findmnt tool to read the device that contains the root filesystem mountpoint. If that filesystem is using sophisticated technology like subvolumes on btrfs, findmnt reports this information in addition to the actual unix block device in brackets [...]. For the logic flow of get_root_disk_device this extra information broke the subsequent lsblk call. This commit strips eventually existing extra block device information from the findmnt call output. ------------------------------------------------------------------ ------------------ 2025-10-20 - Oct 20 2025 ------------------- ------------------------------------------------------------------ ++++ ImageMagick: - security update - added patches CVE-2025-62171 [bsc#1252282], incomplete fix for integer overflow in BMP Decoder * ImageMagick-CVE-2025-62171.patch ++++ kernel-64kb: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-64kb: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-default: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-default: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-rt: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-rt: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ dtb-aarch64: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ dtb-aarch64: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-source: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-source: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-docs: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-docs: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-kvmsmall: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-kvmsmall: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-obs-build: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-obs-build: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-obs-qa: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-obs-qa: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-syms: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-syms: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-zfcpdump: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ kernel-zfcpdump: - ipv6: sr: Fix MAC comparison to be constant-time (CVE-2025-39702 bsc#1249317) - commit 01c4905 - sctp: linearize cloned gso packets in sctp_rcv (CVE-2025-38718 bsc#1249161) - commit dadd6c3 - scsi: qla4xxx: Prevent a potential error pointer dereference (CVE-2025-39676 bsc#1249302) - commit 7b25b2e - io_uring: fix incorrect io_kiocb reference in io_link_skb (CVE-2025-39963 bsc#1251819) - commit 69302e5 - dpll: zl3073x: Handle missing or corrupted flash configuration (bsc#1252253). - dpll: zl3073x: Increase maximum size of flash utility (bsc#1252253). - dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (bsc#1252253). - dpll: zl3073x: Implement devlink flash callback (bsc#1252253). - dpll: zl3073x: Refactor DPLL initialization (bsc#1252253). - dpll: zl3073x: Add firmware loading functionality (bsc#1252253). - dpll: zl3073x: Add low-level flash functions (bsc#1252253). - dpll: zl3073x: Add functions to access hardware registers (bsc#1252253). - net/mlx5: fs, fix UAF in flow counter release (CVE-2025-39979 bsc#1252067). - net/mlx5e: Harden uplink netdev access against device unbind (CVE-2025-39947 bsc#1251232). - dpll: zl3073x: Add support to get fractional frequency offset (bsc#1252253). - dpll: zl3073x: Add support to get phase offset on connected input pin (bsc#1252253). - dpll: zl3073x: Add support to get/set esync on pins (bsc#1252253). - net/mlx5: fs, add API for sharing HWS action by refcount (CVE-2025-39979 bsc#1252067). - commit fe6aeff - powerpc/fadump: skip parameter area allocation when fadump is disabled (jsc#PED-9891 git-fixes). - commit bdb01f7 - nfsd: refine and rename NFSD_MAY_LOCK (git-fixes). - commit c7caa62 - NFSD: Replace use of NFSD_MAY_LOCK in nfsd4_lock() (git-fixes). - commit 3a34ceb ++++ selinux-policy: - Update to version 20250627+git239.fcbf2d509: * fail2ban: bump module version * fail2ban: allow fail2ban to watch all log files and dirs (bsc#1251952) * fail2ban: fix typos in interface descriptions * fail2ban: tweak file context regex for /run/fail2ban * fail2ban: drop file context for old rc.d file * Allow wicket to manage its proc directories (bsc#1235731) * Allow NM to manage wicked pid files (bsc#1235731) * Allow NM to reach systemd unit files (bsc#1235731) * Make wicked script backwards compatible (bsc#1251923) * Allow snapper grub plugin to domtrans to bootloader_t (bsc#1251862) * Allow salt_t transition to rpm_script_t (bsc#1250696) * grub snapper plugin is now named 00-grub (bsc#1251793) * Assign alts_exec_t exec_file attribute (bsc#1250974) * Add equivalency between /srv/tomcat and /var/lib/tomcat (bsc#1251227) * Allow sshd_session_t write to wtmpdb * Support /usr/libexec/ssh as well as openssh folder * Set xenstored_use_store_type_domain boolean true(bsc#1247875) * Adjust guest and xguest users policy for sshd-session * Allow valkey-server create and use netlink_rdma_socket * Allow blueman get attributes of filesystems with extended attributes * Update files_search_base_file_types() * Introduce unconfined wicked_script_t (bsc#1205770, bsc#1250661) * Allow geoclue get attributes of the /dev/shm filesystem * Allow apcupsd get attributes of the /dev/shm filesystem * Allow sshd-session read cockpit pid files * Add /opt/.snapshots to the snapper file context (bsc#1232226) * Allow nfs generator create and use netlink sockets * Conditionally allow virt guests to read certificates in user home directories * xenstored_t needs CAP_SYS_ADMIN for XENSTORETYPE=domain (bsc#1247875) * Allow nfs-generator create and use udp sockets * Allow kdump search kdumpctl_tmp_t directories * Allow init open and read user tmp files * Fix the systemd_logind_stream_connect() interface * Allow staff and sysadm execute iotop using sudo * Allow sudodomains connect to systemd-logind over a unix socket * /boot/efi is dosfs_t and kdump needs to access it (bsc#1249370) * Add default contexts for sshd-seesion * Define types for new openssh executables * Fix systemd_manage_unit_symlinks() interface definition * Support coreos installation methods * Add a new type for systemd-ssh-issue PID files * Allow gnome-remote-desktop connect to unreserved ports * Zypper moves files in /var/tmp to /var/cache (bsc#1249052, bsc#1249435) * Allow mdadm the CAP_SYS_PTRACE capability * Allow iptables manage its private fifo_files in /tmp * Allow auditd manage its private run dirs * Revert "Allow virt_domain write to virt_image_t files" * Allow gdm create /etc/.pwd.lock with a file transition * Allow gdm bind a socket in the /run/systemd/userdbd directory * Allow nsswitch_domain connect to xdm over a unix domain socket * Allow systemd homed getattr all tmpfs files (bsc#1240883) * Allow systemd (PID 1) create lastlog entries * Allow systemd_homework_t transition pid files to lvm_var_run_t (bsc#1240883) * Allow gnome-remote-desktop speak with tabrmd over dbus (bsc#1244573) * Allow nm-dispatcher iscsi and sendmail plugins get pidfs attributes * Allow systemd-oomd watch tmpfs dirs * Allow chronyc the setgid and setuid capabilities * Label /usr/lib/systemd/systemd-ssh-issue with systemd_ssh_issue_exec_t * Allow stalld map sysfs files * Allow NetworkManager-dispatcher-winbind get pidfs attributes * Allow openvpn create and use generic netlink socket * policy_capabilities: remove estimated from released versions * policy_capabilities: add stub for userspace_initial_context * add netlink_xperm policy capability and nlmsg permission definitions * policy_capabilities: add ioctl_skip_cloexec * selinux-policy: add allow rule for tuned_ppd_t * selinux-policy: add allow rule for switcheroo_control_t * Label /run/audit with auditd_var_run_t * Allow virtqemud start a vm which uses nbdkit * Add nbdkit_signal() and nbdkit_signull() interfaces * Fix insights_client interfaces names * Add insights_core and insights_client interfaces * Fix selinux-autorelabel-generator label after upstream changes * Revert "Remove the mysql module sources" * Revert "Allow rasdaemon write access to sysfs (bsc#1229587)" * Reset postfix.fc to upstream, add alias instead * dist/targeted/modules.conf: enable slrnpull module * Allow bootupd delete symlinks in the /boot directory * Allow systemd-coredumpd capabilities in the user namespace * Allow openvswitch read virtqemud process state * Allow systemd-networkd to create leases directory * Apply generator template to selinux-autorelabel generator * Support virtqemud handle hotplug hostdev devices * Allow virtstoraged create qemu /var/run files * Allow unconfined_domain_type cap2_userns capabilities * Label /usr/libexec/postfix/tlsproxy with postfix_smtp_exec_t * Remove the mysql module sources * dist/targeted/modules.conf: Enable kmscon module (bsc#1238137) * Update kmscon policy module to kmscon version 9 (bsc#1238137) * Allow login to getattr pidfs * Allow systemd to map files under /sys * systemd: drop duplicate init_nnp_daemon_domain lines * Fix typo * Allow logwatch stream connect to opensmtpd * Allow geoclue read NetworkManager pid files * Allow unconfined user a file transition for creating sudo log directory * Allow virtqemud read/write inherited dri devices * Allow xdm_t create user namespaces * Update policy for login_userdomain * Add ppd_base_profile to file transition to get tuned_rw_etc_t type * Update policy for bootupd * Allow logwatch work with opensmtpd * Update dovecot policy for dovecot 2.4.1 * Allow ras-mc-ctl write to sysfs files * Allow anaconda-generator get attributes of all filesystems * Add the rhcd_rw_fifo_files() interface * Allow systemd-coredump the sys_chroot capability * Allow hostapd write to socket files in /tmp * Recognize /var/home as an alternate path for /home * Label /var/lib/lastlog with lastlog_t * Allow virtqemud write to sysfs files * Allow irqbalance search sssd lib directories * Allow samba-dcerpcd send sigkills to passwd * Allow systemd-oomd watch dbus pid sock files * Allow some confined users read and map generic log files * Allow login_userdomain watch the /run/log/journal directory * Allow login_userdomain dbus chat with tuned-ppd * Allow login_userdomain dbus chat with switcheroo-control * Allow userdomain to connect to systemd-oomd over a unix socket * Add insights_client_delete_lib_dirs() interface * Allow virtqemud_t use its private tmpfs files (bsc#1242998) * Allow virtqemud_t setattr to /dev/userfaultfd (bsc#1242998) * Allow virtqemud_t read and write /dev/ptmx (bsc#1242998) * Extend virtqemud_t tcp_socket permissions (bsc#1242998) * Allow virtqemud_t to read and write generic pty (bsc#1242998) * Allow systemd-importd create and unlink init pid socket * Allow virtqemud handle virt_content_t chr files * Allow svirt read virtqemud fifo files * All sblim-sfcbd the dac_read_search capability * Allow sblim domain read systemd session files * Allow sblim-sfcbd execute dnsdomainname * Confine nfs-server generator * Allow systemd-timedated start/stop timemaster services * Allow "hostapd_cli ping" run as a systemd service * Allow power-profiles-daemon get attributes of filesystems with extended attributes * Allow 'oomctl dump' to interact with systemd-oomd * Basic functionality for systemd-oomd * Basic enablement for systemd-oomd * Allow samba-bgqd send to smbd over a unix datagram socket * Update kernel_secretmem_use() * Add the file/watch_mountns permission * Update systemd-generators policy * Allow plymouthd_t read proc files of systemd_passwd_agent (bsc#1245470) * Allow insights-client file transition for files in /var/tmp * Allow tuned-ppd manage tuned log files * Allow systemd-coredump mount on tmpfs filesystems * Update sssd_dontaudit_read_public_files() * Allow zram-generator raw read fixed disk device * Add fs_write_cgroup_dirs() and fs_setattr_cgroup_dirs() interfaces ++++ selinux-policy: - Update to version 20250627+git239.fcbf2d509: * fail2ban: bump module version * fail2ban: allow fail2ban to watch all log files and dirs (bsc#1251952) * fail2ban: fix typos in interface descriptions * fail2ban: tweak file context regex for /run/fail2ban * fail2ban: drop file context for old rc.d file * Allow wicket to manage its proc directories (bsc#1235731) * Allow NM to manage wicked pid files (bsc#1235731) * Allow NM to reach systemd unit files (bsc#1235731) * Make wicked script backwards compatible (bsc#1251923) * Allow snapper grub plugin to domtrans to bootloader_t (bsc#1251862) * Allow salt_t transition to rpm_script_t (bsc#1250696) * grub snapper plugin is now named 00-grub (bsc#1251793) * Assign alts_exec_t exec_file attribute (bsc#1250974) * Add equivalency between /srv/tomcat and /var/lib/tomcat (bsc#1251227) * Allow sshd_session_t write to wtmpdb * Support /usr/libexec/ssh as well as openssh folder * Set xenstored_use_store_type_domain boolean true(bsc#1247875) * Adjust guest and xguest users policy for sshd-session * Allow valkey-server create and use netlink_rdma_socket * Allow blueman get attributes of filesystems with extended attributes * Update files_search_base_file_types() * Introduce unconfined wicked_script_t (bsc#1205770, bsc#1250661) * Allow geoclue get attributes of the /dev/shm filesystem * Allow apcupsd get attributes of the /dev/shm filesystem * Allow sshd-session read cockpit pid files * Add /opt/.snapshots to the snapper file context (bsc#1232226) * Allow nfs generator create and use netlink sockets * Conditionally allow virt guests to read certificates in user home directories * xenstored_t needs CAP_SYS_ADMIN for XENSTORETYPE=domain (bsc#1247875) * Allow nfs-generator create and use udp sockets * Allow kdump search kdumpctl_tmp_t directories * Allow init open and read user tmp files * Fix the systemd_logind_stream_connect() interface * Allow staff and sysadm execute iotop using sudo * Allow sudodomains connect to systemd-logind over a unix socket * /boot/efi is dosfs_t and kdump needs to access it (bsc#1249370) * Add default contexts for sshd-seesion * Define types for new openssh executables * Fix systemd_manage_unit_symlinks() interface definition * Support coreos installation methods * Add a new type for systemd-ssh-issue PID files * Allow gnome-remote-desktop connect to unreserved ports * Zypper moves files in /var/tmp to /var/cache (bsc#1249052, bsc#1249435) * Allow mdadm the CAP_SYS_PTRACE capability * Allow iptables manage its private fifo_files in /tmp * Allow auditd manage its private run dirs * Revert "Allow virt_domain write to virt_image_t files" * Allow gdm create /etc/.pwd.lock with a file transition * Allow gdm bind a socket in the /run/systemd/userdbd directory * Allow nsswitch_domain connect to xdm over a unix domain socket * Allow systemd homed getattr all tmpfs files (bsc#1240883) * Allow systemd (PID 1) create lastlog entries * Allow systemd_homework_t transition pid files to lvm_var_run_t (bsc#1240883) * Allow gnome-remote-desktop speak with tabrmd over dbus (bsc#1244573) * Allow nm-dispatcher iscsi and sendmail plugins get pidfs attributes * Allow systemd-oomd watch tmpfs dirs * Allow chronyc the setgid and setuid capabilities * Label /usr/lib/systemd/systemd-ssh-issue with systemd_ssh_issue_exec_t * Allow stalld map sysfs files * Allow NetworkManager-dispatcher-winbind get pidfs attributes * Allow openvpn create and use generic netlink socket * policy_capabilities: remove estimated from released versions * policy_capabilities: add stub for userspace_initial_context * add netlink_xperm policy capability and nlmsg permission definitions * policy_capabilities: add ioctl_skip_cloexec * selinux-policy: add allow rule for tuned_ppd_t * selinux-policy: add allow rule for switcheroo_control_t * Label /run/audit with auditd_var_run_t * Allow virtqemud start a vm which uses nbdkit * Add nbdkit_signal() and nbdkit_signull() interfaces * Fix insights_client interfaces names * Add insights_core and insights_client interfaces * Fix selinux-autorelabel-generator label after upstream changes * Revert "Remove the mysql module sources" * Revert "Allow rasdaemon write access to sysfs (bsc#1229587)" * Reset postfix.fc to upstream, add alias instead * dist/targeted/modules.conf: enable slrnpull module * Allow bootupd delete symlinks in the /boot directory * Allow systemd-coredumpd capabilities in the user namespace * Allow openvswitch read virtqemud process state * Allow systemd-networkd to create leases directory * Apply generator template to selinux-autorelabel generator * Support virtqemud handle hotplug hostdev devices * Allow virtstoraged create qemu /var/run files * Allow unconfined_domain_type cap2_userns capabilities * Label /usr/libexec/postfix/tlsproxy with postfix_smtp_exec_t * Remove the mysql module sources * dist/targeted/modules.conf: Enable kmscon module (bsc#1238137) * Update kmscon policy module to kmscon version 9 (bsc#1238137) * Allow login to getattr pidfs * Allow systemd to map files under /sys * systemd: drop duplicate init_nnp_daemon_domain lines * Fix typo * Allow logwatch stream connect to opensmtpd * Allow geoclue read NetworkManager pid files * Allow unconfined user a file transition for creating sudo log directory * Allow virtqemud read/write inherited dri devices * Allow xdm_t create user namespaces * Update policy for login_userdomain * Add ppd_base_profile to file transition to get tuned_rw_etc_t type * Update policy for bootupd * Allow logwatch work with opensmtpd * Update dovecot policy for dovecot 2.4.1 * Allow ras-mc-ctl write to sysfs files * Allow anaconda-generator get attributes of all filesystems * Add the rhcd_rw_fifo_files() interface * Allow systemd-coredump the sys_chroot capability * Allow hostapd write to socket files in /tmp * Recognize /var/home as an alternate path for /home * Label /var/lib/lastlog with lastlog_t * Allow virtqemud write to sysfs files * Allow irqbalance search sssd lib directories * Allow samba-dcerpcd send sigkills to passwd * Allow systemd-oomd watch dbus pid sock files * Allow some confined users read and map generic log files * Allow login_userdomain watch the /run/log/journal directory * Allow login_userdomain dbus chat with tuned-ppd * Allow login_userdomain dbus chat with switcheroo-control * Allow userdomain to connect to systemd-oomd over a unix socket * Add insights_client_delete_lib_dirs() interface * Allow virtqemud_t use its private tmpfs files (bsc#1242998) * Allow virtqemud_t setattr to /dev/userfaultfd (bsc#1242998) * Allow virtqemud_t read and write /dev/ptmx (bsc#1242998) * Extend virtqemud_t tcp_socket permissions (bsc#1242998) * Allow virtqemud_t to read and write generic pty (bsc#1242998) * Allow systemd-importd create and unlink init pid socket * Allow virtqemud handle virt_content_t chr files * Allow svirt read virtqemud fifo files * All sblim-sfcbd the dac_read_search capability * Allow sblim domain read systemd session files * Allow sblim-sfcbd execute dnsdomainname * Confine nfs-server generator * Allow systemd-timedated start/stop timemaster services * Allow "hostapd_cli ping" run as a systemd service * Allow power-profiles-daemon get attributes of filesystems with extended attributes * Allow 'oomctl dump' to interact with systemd-oomd * Basic functionality for systemd-oomd * Basic enablement for systemd-oomd * Allow samba-bgqd send to smbd over a unix datagram socket * Update kernel_secretmem_use() * Add the file/watch_mountns permission * Update systemd-generators policy * Allow plymouthd_t read proc files of systemd_passwd_agent (bsc#1245470) * Allow insights-client file transition for files in /var/tmp * Allow tuned-ppd manage tuned log files * Allow systemd-coredump mount on tmpfs filesystems * Update sssd_dontaudit_read_public_files() * Allow zram-generator raw read fixed disk device * Add fs_write_cgroup_dirs() and fs_setattr_cgroup_dirs() interfaces ++++ suse-migration-services: - Use of f-strings not allowed in the DMS The code has to stay compatible with python 3.4 because SLE12-to-SLE15 migrations has to continue to work. On SLE12 only python 3.4 exists. This commit fixes the code that used f-strings executed on python 3.4. This is related to bsc#1248137 ------------------------------------------------------------------ ------------------ 2025-10-19 - Oct 19 2025 ------------------- ------------------------------------------------------------------ ++++ apparmor: - add dovecot24-part3-mr1822.diff: allow writing /tmp/doveconf.* in more dovecot profiles ++++ libapparmor: - add dovecot24-part3-mr1822.diff: allow writing /tmp/doveconf.* in more dovecot profiles ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ++++ openQA: - Update to version 5.1760515610.a802d1dd: * Lower the prio of archiving jobs to avoid piling up finalize jobs * Add signatures in Schema::Result::ApiKeys ------------------------------------------------------------------ ------------------ 2025-10-18 - Oct 18 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaThunderbird: - Mozilla Thunderbird 140.4.0 ESR * Account Hub is now disabled by default for second email account * Users could not read mail signed with OpenPGP v6 and PQC keys * Image preview in Insert Image dialog failed with CSP error for web resources * Emptying trash on exit did not work with some providers * Thunderbird could crash when applying filters * Users were unable to override expired mail server certificate * Opening Website header link in RSS feed incorrectly re-encoded URL parameters MFSA 2025-85 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 ++++ MozillaThunderbird: - Mozilla Thunderbird 140.4.0 ESR * Account Hub is now disabled by default for second email account * Users could not read mail signed with OpenPGP v6 and PQC keys * Image preview in Insert Image dialog failed with CSP error for web resources * Emptying trash on exit did not work with some providers * Thunderbird could crash when applying filters * Users were unable to override expired mail server certificate * Opening Website header link in RSS feed incorrectly re-encoded URL parameters MFSA 2025-85 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 ++++ gitea-tea: - update to 0.11.1: * 61d4e57 Fix Pr Create crash (#823) * 4f33146 add test for matching logins (#820) * 08b8398 Update README.md (#819) ++++ gitea-tea: - update to 0.11.1: * 61d4e57 Fix Pr Create crash (#823) * 4f33146 add test for matching logins (#820) * 08b8398 Update README.md (#819) ++++ maven-javadoc-plugin: - Added patch: * expected-encoding.patch + fix a bug with encoding mismatch with JDK8 on Windows ++++ maven-javadoc-plugin-bootstrap: - Added patch: * expected-encoding.patch + fix a bug with encoding mismatch with JDK8 on Windows ------------------------------------------------------------------ ------------------ 2025-10-17 - Oct 17 2025 ------------------- ------------------------------------------------------------------ ++++ agama-web-ui: - Preserve installer options values after successful submission (bsc#1249636). ++++ kernel-64kb: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-64kb: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-64kb: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-default: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-default: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-default: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-rt: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-rt: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-rt: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ dtb-aarch64: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ dtb-aarch64: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ dtb-aarch64: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-source: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-source: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-source: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-docs: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-docs: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-docs: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-kvmsmall: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-kvmsmall: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-kvmsmall: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-build: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-build: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-build: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-qa: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-qa: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-obs-qa: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-syms: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-syms: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-syms: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-zfcpdump: - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-zfcpdump: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ kernel-zfcpdump: - doc/README.SUSE: Correct the character used for TAINT_NO_SUPPORT The character was previously 'N', but upstream used it for TAINT_TEST, which prompted the change of TAINT_NO_SUPPORT to 'n'. This occurred in commit c35dc3823d08 ("Update to 6.0-rc1") on master and in d016c04d731d ("Bump to 6.4 kernel (jsc#PED-4593)") for SLE15-SP6 (and onwards). Update the documentation to reflect this change. - commit f42ecf5 - cpufreq: Make drivers using CPUFREQ_ETERNAL specify transition latency (stable-fixes git-fixes). - commit 41821ef - cpufreq: CPPC: Avoid using CPUFREQ_ETERNAL as transition delay (stable-fixes). - commit 4f5afab - cpufreq: scmi: Account for malformed DT in scmi_dev_used_by_cpus() (git-fixes). - commit e9a9ed4 - cpufreq: armada-8k: Fix off by one in armada_8k_cpufreq_free_table() (stable-fixes). - commit 1b00366 - cpufreq: armada-8k: make both cpu masks static (git-fixes). - commit 3ab6135 - cpufreq: sun50i: prevent out-of-bounds access (git-fixes). - commit 815165b - cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() (git-fixes). - commit 330c599 - skmsg: Return copied bytes in sk_msg_memcopy_from_iter (bsc#1250650). - commit 6650ce1 ++++ opensuse-migration-tool: - Update to version 20251017.e28f94c: * fix: remove the check for x86-64-v3 flag xsave from the v2 check ++++ virt-manager: - bsc#1252105 - Unable to create an SEV-SNP enabled guest with virt-manager. This simplifies the code from what used to be required for sev while adding initial tdx support. virtman-add-launch-security-support.patch - Dropped patches rolled into above the patch. virtman-add-sev-memory-support.patch virtinst-dont-require-uefi-for-sev-snp.patch ------------------------------------------------------------------ ------------------ 2025-10-16 - Oct 16 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-64kb: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-64kb: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-default: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-default: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-default: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-rt: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-rt: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-rt: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ dtb-aarch64: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ dtb-aarch64: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ dtb-aarch64: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ hawk2: - bump ruby gem rack to 3.1.18 (bsc#1251939) * rack-3.1.18.gem - bump ruby gem uri to 1.0.4 * uri-1.0.4.gem ++++ kernel-source: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-source: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-source: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-docs: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-docs: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-docs: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-kvmsmall: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-kvmsmall: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-kvmsmall: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-livepatch-SLE16_Update_1: - New branch for SLE16_Update_1 - commit 40781a3 ++++ kernel-livepatch-SLE16_Update_1: - New branch for SLE16_Update_1 - commit 40781a3 ++++ kernel-livepatch-SLE16-RT_Update_1: - New branch for SLE16-RT_Update_1 - commit f3319a9 ++++ kernel-livepatch-SLE16-RT_Update_1: - New branch for SLE16-RT_Update_1 - commit f3319a9 ++++ kernel-obs-build: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-obs-build: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-obs-build: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-obs-qa: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-obs-qa: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-obs-qa: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-syms: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-syms: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-syms: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-zfcpdump: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-zfcpdump: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ kernel-zfcpdump: - scsi: mpi3mr: Update driver version to 8.15.0.5.50 (bsc#1251186). - scsi: mpi3mr: Fix premature TM timeouts on virtual drives (bsc#1251186). - scsi: mpi3mr: Update MPI headers to revision 37 (bsc#1251186). - scsi: mpi3mr: Fix I/O failures during controller reset (bsc#1251186). - scsi: mpi3mr: Fix controller init failure on fault during queue creation (bsc#1251186). - scsi: mpi3mr: Fix device loss during enclosure reboot due to zero link speed (bsc#1251186). - scsi: mpi3mr: Event processing debug improvement (bsc#1251186). - commit 15f7129 - iommu/amd: Fix alias device DTE setting (git-fixes). - iommu/arm-smmu-v3: Fix smmu_domain->nr_ats_masters decrement (git-fixes). - iommu/amd: Enable PASID and ATS capabilities in the correct order (git-fixes). - commit 6e3bf58 - tls: make sure to abort the stream if headers are bogus (CVE-2025-39946 bsc#1251114). - commit 97adb08 - selftests/bpf: Add test for unpinning htab with internal timer struct (git-fixes). - commit 54bbdc7 - bpf: Avoid RCU context warning when unpinning htab with internal structs (git-fixes). - commit 6cf3a66 - bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} (git-fixes). - commit 939b57e ++++ knot: - disable quic in stable releases due to the missing libraries - update to version 3.5.1, see https://www.knot-dns.cz/2025-10-16-version-351.html ++++ knot: - disable quic in stable releases due to the missing libraries - update to version 3.5.1, see https://www.knot-dns.cz/2025-10-16-version-351.html ++++ s390-tools: - Upgrade s390-tools to version 2.39 (jsc#PED-10303) - Changes of existing tools: * chpstat: Add options to select IEC units for scaling (SI units are default) * chzdev: Introduce --no-module-load option * cpi: Disable CPI for SEL guests by default * dbginfo.sh: Enhance logging on timeout triggered * iucvterm: Install symlink for lsiucvallow.8 man page * lshwc: Add command line flag to specify individual counters * lspai: Add command line flag for delta values * lspai: Add command line flag for short counter names * lspai: Add command line flag to specify individual counters * lspai: Add command line flags for all cpus * lspai: Add command line flags for hexadecimal output * man: Use CR for constant width font * pvimg: Add '--image-key' option * zdev: Allow dynamic control of module load * zipl/boot: Fix EBCDIC code page 500 conversion and decrease size by 200 bytes * zipl: Add support of heterogeneous mirrors (remove technical limitations on mirrored targets, thus allowing mirrored devices consist of partitions at different offsets on disks of different types and geometry). * zkey: Add support for generating and importing exportable secure keys - Bug Fixes: * chpstat: Fix scaling of DPU utilization calculation * zdev/dracut: Prevent loading of unused kernel modules * zdev: Fix double device configuration on DPM systems * zdev: Fix double device configuration with rd.dasd * zipl_helper.device-mapper: Fix segfault in an error path - Removed obsolete patches: * s390-tools-sles16sp0-chpstat-Fix-scaling-of-DPU-utilization-calculation.patch * s390-tools-libekmfweb-Fix-generation-of-certificate-or-CSR-with-RSA-PSS-instead-of-RSA.patch - Re-vendor-ed vendor.tar.zst ++++ numatop: - common-Ignore-samples-for-exiting-tasks.patch: segfault fix (bsc#1248317) - 01-Fix-upper-bound-for-nodes.patch 02-Fix-upper-bound-for-CPUs-per-node.patch 03-Resolve-max-count-of-nodes-at-runtime.patch 04-Resolve-max-count-of-CPUs-at-runtime.patch 05-Resolve-max-count-of-CPUs-per-node-at-runtime.patch 06-Remove-unused-NPROCS_NAX.patch: fix >256 CPUs per NUMA node (bsc#1247358) ++++ nvidia-open-driver-G06-signed-cuda: - renamed check to %name-check package ++++ nvidia-open-driver-G06-signed-cuda: - renamed check to %name-check package ++++ nvidia-open-driver-G06-signed: - renamed check to %name-check package ++++ nvidia-open-driver-G06-signed: - renamed check to %name-check package ++++ runc: [ This update was only released for SLE 12 and 15. ] - Backport patches for three CVEs. All three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files. bsc#1252232 * CVE-2025-31133 * CVE-2025-52565 * CVE-2025-52881 + 2025-11-05-CVEs.patch ++++ suse-migration-services: - Simplify interface naming by disabling predictable names at boot Currently our most difficult problem with regards to the network interface naming scheme is that when the migration image boots the interfaces get predictable names like 'enp1s0' which we then have to revert/write custom rules around. To simplify this we can install a file at /etc/systemd/network/99-default.link. This skips all naming schemes and the kernel names are used. Then we can remove this file again and copy over all the necessary udev rules and link files from the host and with udevadm trigger apply these. This should imitate the behavior of the final migrated system most closely. ------------------------------------------------------------------ ------------------ 2025-10-15 - Oct 15 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ chromium: - Chromium 141.0.7390.107: * CVE-2025-11756: Use after free in Safe Browsing (boo#1252013) ++++ kernel-64kb: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-64kb: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-64kb: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-default: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-default: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-default: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-rt: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-rt: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-rt: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ samba: - Update to 4.22.5 * CVE-2025-10230: Command injection via WINS server hook script (bso#15903); (bsc#1251280). * CVE-2025-9640: uninitialized memory disclosure via vfs_streams_xattr; (bso#15885); (bsc#1251279). ++++ samba: - Update to 4.22.5 * CVE-2025-10230: Command injection via WINS server hook script (bso#15903); (bsc#1251280). * CVE-2025-9640: uninitialized memory disclosure via vfs_streams_xattr; (bso#15885); (bsc#1251279). ++++ samba: - Update to 4.22.5 * CVE-2025-10230: Command injection via WINS server hook script (bso#15903); (bsc#1251280). * CVE-2025-9640: uninitialized memory disclosure via vfs_streams_xattr; (bso#15885); (bsc#1251279). ++++ dtb-aarch64: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ dtb-aarch64: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ dtb-aarch64: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ git-bug: - Revendor to include golang.org/x/net/html v 0.45.0 to prevent possible DoS by various algorithms with quadratic complexity when parsing HTML documents (bsc#1251463, CVE-2025-47911 and bsc#1251664, CVE-2025-58190). ++++ kernel-source: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-source: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-source: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-docs: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-docs: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-docs: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-kvmsmall: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-kvmsmall: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-kvmsmall: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-build: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-build: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-build: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-qa: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-qa: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-obs-qa: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-syms: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-syms: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-syms: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-zfcpdump: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-zfcpdump: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ kernel-zfcpdump: - Update patches.suse/ASoC-qcom-q6apm-lpass-dais-Fix-NULL-pointer-derefere.patch (git-fixes CVE-2025-39938 bsc#1251134). - Update patches.suse/crypto-af_alg-Set-merge-to-zero-early-in-af_alg_send.patch (git-fixes CVE-2025-39931 bsc#1251100). - Update patches.suse/drm-bridge-anx7625-Fix-NULL-pointer-dereference-with.patch (git-fixes CVE-2025-39934 bsc#1251146). - Update patches.suse/net-rfkill-gpio-Fix-crash-due-to-dereferencering-uni.patch (git-fixes CVE-2025-39937 bsc#1251143). - Update patches.suse/wifi-mac80211-increase-scan_ies_len-for-S1G.patch (stable-fixes CVE-2025-39957 bsc#1251810). - Update patches.suse/wifi-wilc1000-avoid-buffer-overflow-in-WID-string-co.patch (stable-fixes CVE-2025-39952 bsc#1251216). - commit 6d21f77 - iommu/vt-d: Disallow dirty tracking if incoherent page walk (git-fixes). - iommu/vt-d: PRS isn't usable if PDS isn't supported (git-fixes). - commit 9da8433 - wifi: iwlwifi: Add missing firmware info for bz-b0-* models (bsc#1252084). - commit 7b5c81c - wifi: iwlwifi: config: unify fw/pnvm MODULE_FIRMWARE (bsc#1252084). - commit 2e309d0 - mm/page_alloc: fix race condition in unaccepted memory handling (CVE-2025-38008 bsc#1244939). - commit c480181 - mm/slub: avoid accessing metadata when pointer is invalid in object_err() (CVE-2025-39902 bsc#1250702). - commit 507e4ea - NFSD: Define a proc_layoutcommit for the FlexFiles layout type (git-fixes). - commit d3322a8 - selftests/tracing: Fix false failure of subsystem event test (git-fixes). - commit 95dc965 - tracing: Fix filter string testing (git-fixes). - commit aca40c5 - tracing: fprobe events: Fix possible UAF on modules (git-fixes). - commit afb00f2 - tracing: tprobe-events: Fix leakage of module refcount (git-fixes). - commit c1d1f90 - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (git-fixes). - commit afe3ecd - bpf: Check link_create.flags parameter for multi_kprobe (git-fixes). - commit 0da9eff - bpf: Check link_create.flags parameter for multi_uprobe (git-fixes). - commit 5ee2013 - ftrace: fix incorrect hash size in register_ftrace_direct() (git-fixes). - commit 7b2465b - bpf: Use preempt_count() directly in bpf_send_signal_common() (git-fixes). - commit 840bc07 - tracing: Correct the refcount if the hist/hist_debug file fails to open (git-fixes). - commit 66499d7 - module: Prevent silent truncation of module name in delete_module(2) (git-fixes). - commit 97db76c - tracing: Add down_write(trace_event_sem) when adding trace event (bsc#1248211 CVE-2025-38539). - commit 7396877 - tracing: Limit access to parser->buffer when trace_get_user failed (bsc#1249286 CVE-2025-39683). - tracing: Remove unneeded goto out logic (bsc#1249286). - commit 1685cce ++++ libxslt: - security update - added patches CVE-2025-11731 [bsc#1251979], type confusion in exsltFuncResultCompfunction leading to denial of service * libxslt-CVE-2025-11731.patch ++++ python313-core: - Update to 3.13.9: - Library - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - Update to 3.13.8: - macOS - gh-124111: Update macOS installer to use Tcl/Tk 8.6.17. - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - Windows - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - gh-138896: Fix error installing C runtime on non-updated Windows machines - Tools/Demos - gh-139330: SBOM generation tool didn’t cross-check the version and checksum values against the Modules/expat/refresh.sh script, leading to the values becoming out-of-date during routine updates. - gh-137873: The iOS test runner has been simplified, resolving some issues that have been observed using the runner in GitHub Actions and Azure Pipelines test environments. - Tests - gh-139208: Fix regrtest --fast-ci --verbose: don’t ignore the - -verbose option anymore. Patch by Victor Stinner. - Security - gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. - gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. - gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard: ] ]> and ]] > no longer end the CDATA section. Add private method _set_support_cdata() which can be used to specify how to parse <[CDATA[ — as a CDATA section in foreign content (SVG or MathML) or as a bogus comment in the HTML namespace. - Library - gh-139312: Upgrade bundled libexpat to 2.7.3 - gh-139289: Do a real lazy-import on rlcompleter in pdb and restore the existing completer after importing rlcompleter. - gh-139210: Fix use-after-free when reporting unknown event in xml.etree.ElementTree.iterparse(). Patch by Ken Jin. - gh-138860: Lazy import rlcompleter in pdb to avoid deadlock in subprocess. - gh-112729: Fix crash when calling _interpreters.create when the process is out of memory. - gh-139076: Fix a bug in the pydoc module that was hiding functions in a Python module if they were implemented in an extension module and the module did not have __all__. - gh-138998: Update bundled libexpat to 2.7.2 - gh-130567: Fix possible crash in locale.strxfrm() due to a platform bug on macOS. - gh-138779: Support device numbers larger than 2**63-1 for the st_rdev field of the os.stat_result structure. - gh-128636: Fix crash in PyREPL when os.environ is overwritten with an invalid value for mac - gh-88375: Fix normalization of the robots.txt rules and URLs in the urllib.robotparser module. No longer ignore trailing ?. Distinguish raw special characters ?, = and & from the percent-encoded ones. - gh-138515: email is added to Emscripten build. - gh-111788: Fix parsing errors in the urllib.robotparser module. Don’t fail trying to parse weird paths. Don’t fail trying to decode non-UTF-8 robots.txt files. - gh-138432: zoneinfo.reset_tzpath() will now convert any os.PathLike objects it receives into strings before adding them to TZPATH. It will raise TypeError if anything other than a string is found after this conversion. If given an os.PathLike object that represents a relative path, it will now raise ValueError instead of TypeError, and present a more informative error message. - gh-138008: Fix segmentation faults in the ctypes module due to invalid argtypes. Patch by Dung Nguyen. - gh-60462: Fix locale.strxfrm() on Solaris (and possibly other platforms). - gh-138204: Forbid expansion of shared anonymous memory maps on Linux, which caused a bus error. - gh-138010: Fix an issue where defining a class with a @warnings.deprecated-decorated base class may not invoke the correct __init_subclass__() method in cases involving multiple inheritance. Patch by Brian Schubert. - gh-138133: Prevent infinite traceback loop when sending CTRL^C to Python through strace. - gh-134869: Fix an issue where pressing Ctrl+C during tab completion in the REPL would leave the autocompletion menu in a corrupted state. - gh-137317: inspect.signature() now correctly handles classes that use a descriptor on a wrapped __init__() or __new__() method. Contributed by Yongyu Yan. - gh-137754: Fix import of the zoneinfo module if the C implementation of the datetime module is not available. - gh-137490: Handle ECANCELED in the same way as EINTR in signal.sigwaitinfo() on NetBSD. - gh-137477: Fix inspect.getblock(), inspect.getsourcelines() and inspect.getsource() for generator expressions. - gh-137017: Fix threading.Thread.is_alive to remain True until the underlying OS thread is fully cleaned up. This avoids false negatives in edge cases involving thread monitoring or premature threading.Thread.is_alive calls. - gh-136134: SMTP.auth_cram_md5() now raises an SMTPException instead of a ValueError if Python has been built without MD5 support. In particular, SMTP clients will not attempt to use this method even if the remote server is assumed to support it. Patch by Bénédikt Tran. - gh-136134: IMAP4.login_cram_md5 now raises an IMAP4.error if CRAM-MD5 authentication is not supported. Patch by Bénédikt Tran. - gh-135386: Fix opening a dbm.sqlite3 database for reading from read-only file or directory. - gh-126631: Fix multiprocessing forkserver bug which prevented __main__ from being preloaded. - gh-123085: In a bare call to importlib.resources.files(), ensure the caller’s frame is properly detected when importlib.resources is itself available as a compiled module only (no source). - gh-118981: Fix potential hang in multiprocessing.popen_spawn_posix that can happen when the child proc dies early by closing the child fds right away. - gh-78319: UTF8 support for the IMAP APPEND command has been made RFC compliant. - bpo-38735: Fix failure when importing a module from the root directory on unix-like platforms with sys.pycache_prefix set. - bpo-41839: Allow negative priority values from os.sched_get_priority_min() and os.sched_get_priority_max() functions. - Core and Builtins - gh-134466: Don’t run PyREPL in a degraded environment where setting termios attributes is not allowed. - gh-71810: Raise OverflowError for (-1).to_bytes() for signed conversions when bytes count is zero. Patch by Sergey B Kirpichev. - gh-105487: Remove non-existent __copy__(), __deepcopy__(), and __bases__ from the __dir__() entries of types.GenericAlias. - gh-134163: Fix a hang when the process is out of memory inside an exception handler. - gh-138479: Fix a crash when a generic object’s __typing_subst__ returns an object that isn’t a tuple. - gh-137576: Fix for incorrect source code being shown in tracebacks from the Basic REPL when PYTHONSTARTUP is given. Patch by Adam Hartz. - gh-132744: Certain calls now check for runaway recursion and respect the system recursion limit. - C API - gh-87135: Attempting to acquire the GIL after runtime finalization has begun in a different thread now causes the thread to hang rather than terminate, which avoids potential crashes or memory corruption caused by attempting to terminate a thread that is running code not specifically designed to support termination. In most cases this hanging is harmless since the process will soon exit anyway. While not officially marked deprecated until 3.14, PyThread_exit_thread is no longer called internally and remains solely for interface compatibility. Its behavior is inconsistent across platforms, and it can only be used safely in the unlikely case that every function in the entire call stack has been designed to support the platform-dependent termination mechanism. It is recommended that users of this function change their design to not require thread termination. In the unlikely case that thread termination is needed and can be done safely, users may migrate to calling platform-specific APIs such as pthread_exit (POSIX) or _endthreadex (Windows) directly. - Build - gh-135734: Python can correctly be configured and built with ./configure --enable-optimizations --disable-test-modules. Previously, the profile data generation step failed due to PGO tests where immortalization couldn’t be properly suppressed. Patch by Bénédikt Tran. ++++ python313-nogil-nogil-core: - Update to 3.13.9: - Library - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - Update to 3.13.8: - macOS - gh-124111: Update macOS installer to use Tcl/Tk 8.6.17. - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - Windows - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - gh-138896: Fix error installing C runtime on non-updated Windows machines - Tools/Demos - gh-139330: SBOM generation tool didn’t cross-check the version and checksum values against the Modules/expat/refresh.sh script, leading to the values becoming out-of-date during routine updates. - gh-137873: The iOS test runner has been simplified, resolving some issues that have been observed using the runner in GitHub Actions and Azure Pipelines test environments. - Tests - gh-139208: Fix regrtest --fast-ci --verbose: don’t ignore the - -verbose option anymore. Patch by Victor Stinner. - Security - gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. - gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. - gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard: ] ]> and ]] > no longer end the CDATA section. Add private method _set_support_cdata() which can be used to specify how to parse <[CDATA[ — as a CDATA section in foreign content (SVG or MathML) or as a bogus comment in the HTML namespace. - Library - gh-139312: Upgrade bundled libexpat to 2.7.3 - gh-139289: Do a real lazy-import on rlcompleter in pdb and restore the existing completer after importing rlcompleter. - gh-139210: Fix use-after-free when reporting unknown event in xml.etree.ElementTree.iterparse(). Patch by Ken Jin. - gh-138860: Lazy import rlcompleter in pdb to avoid deadlock in subprocess. - gh-112729: Fix crash when calling _interpreters.create when the process is out of memory. - gh-139076: Fix a bug in the pydoc module that was hiding functions in a Python module if they were implemented in an extension module and the module did not have __all__. - gh-138998: Update bundled libexpat to 2.7.2 - gh-130567: Fix possible crash in locale.strxfrm() due to a platform bug on macOS. - gh-138779: Support device numbers larger than 2**63-1 for the st_rdev field of the os.stat_result structure. - gh-128636: Fix crash in PyREPL when os.environ is overwritten with an invalid value for mac - gh-88375: Fix normalization of the robots.txt rules and URLs in the urllib.robotparser module. No longer ignore trailing ?. Distinguish raw special characters ?, = and & from the percent-encoded ones. - gh-138515: email is added to Emscripten build. - gh-111788: Fix parsing errors in the urllib.robotparser module. Don’t fail trying to parse weird paths. Don’t fail trying to decode non-UTF-8 robots.txt files. - gh-138432: zoneinfo.reset_tzpath() will now convert any os.PathLike objects it receives into strings before adding them to TZPATH. It will raise TypeError if anything other than a string is found after this conversion. If given an os.PathLike object that represents a relative path, it will now raise ValueError instead of TypeError, and present a more informative error message. - gh-138008: Fix segmentation faults in the ctypes module due to invalid argtypes. Patch by Dung Nguyen. - gh-60462: Fix locale.strxfrm() on Solaris (and possibly other platforms). - gh-138204: Forbid expansion of shared anonymous memory maps on Linux, which caused a bus error. - gh-138010: Fix an issue where defining a class with a @warnings.deprecated-decorated base class may not invoke the correct __init_subclass__() method in cases involving multiple inheritance. Patch by Brian Schubert. - gh-138133: Prevent infinite traceback loop when sending CTRL^C to Python through strace. - gh-134869: Fix an issue where pressing Ctrl+C during tab completion in the REPL would leave the autocompletion menu in a corrupted state. - gh-137317: inspect.signature() now correctly handles classes that use a descriptor on a wrapped __init__() or __new__() method. Contributed by Yongyu Yan. - gh-137754: Fix import of the zoneinfo module if the C implementation of the datetime module is not available. - gh-137490: Handle ECANCELED in the same way as EINTR in signal.sigwaitinfo() on NetBSD. - gh-137477: Fix inspect.getblock(), inspect.getsourcelines() and inspect.getsource() for generator expressions. - gh-137017: Fix threading.Thread.is_alive to remain True until the underlying OS thread is fully cleaned up. This avoids false negatives in edge cases involving thread monitoring or premature threading.Thread.is_alive calls. - gh-136134: SMTP.auth_cram_md5() now raises an SMTPException instead of a ValueError if Python has been built without MD5 support. In particular, SMTP clients will not attempt to use this method even if the remote server is assumed to support it. Patch by Bénédikt Tran. - gh-136134: IMAP4.login_cram_md5 now raises an IMAP4.error if CRAM-MD5 authentication is not supported. Patch by Bénédikt Tran. - gh-135386: Fix opening a dbm.sqlite3 database for reading from read-only file or directory. - gh-126631: Fix multiprocessing forkserver bug which prevented __main__ from being preloaded. - gh-123085: In a bare call to importlib.resources.files(), ensure the caller’s frame is properly detected when importlib.resources is itself available as a compiled module only (no source). - gh-118981: Fix potential hang in multiprocessing.popen_spawn_posix that can happen when the child proc dies early by closing the child fds right away. - gh-78319: UTF8 support for the IMAP APPEND command has been made RFC compliant. - bpo-38735: Fix failure when importing a module from the root directory on unix-like platforms with sys.pycache_prefix set. - bpo-41839: Allow negative priority values from os.sched_get_priority_min() and os.sched_get_priority_max() functions. - Core and Builtins - gh-134466: Don’t run PyREPL in a degraded environment where setting termios attributes is not allowed. - gh-71810: Raise OverflowError for (-1).to_bytes() for signed conversions when bytes count is zero. Patch by Sergey B Kirpichev. - gh-105487: Remove non-existent __copy__(), __deepcopy__(), and __bases__ from the __dir__() entries of types.GenericAlias. - gh-134163: Fix a hang when the process is out of memory inside an exception handler. - gh-138479: Fix a crash when a generic object’s __typing_subst__ returns an object that isn’t a tuple. - gh-137576: Fix for incorrect source code being shown in tracebacks from the Basic REPL when PYTHONSTARTUP is given. Patch by Adam Hartz. - gh-132744: Certain calls now check for runaway recursion and respect the system recursion limit. - C API - gh-87135: Attempting to acquire the GIL after runtime finalization has begun in a different thread now causes the thread to hang rather than terminate, which avoids potential crashes or memory corruption caused by attempting to terminate a thread that is running code not specifically designed to support termination. In most cases this hanging is harmless since the process will soon exit anyway. While not officially marked deprecated until 3.14, PyThread_exit_thread is no longer called internally and remains solely for interface compatibility. Its behavior is inconsistent across platforms, and it can only be used safely in the unlikely case that every function in the entire call stack has been designed to support the platform-dependent termination mechanism. It is recommended that users of this function change their design to not require thread termination. In the unlikely case that thread termination is needed and can be done safely, users may migrate to calling platform-specific APIs such as pthread_exit (POSIX) or _endthreadex (Windows) directly. - Build - gh-135734: Python can correctly be configured and built with ./configure --enable-optimizations --disable-test-modules. Previously, the profile data generation step failed due to PGO tests where immortalization couldn’t be properly suppressed. Patch by Bénédikt Tran. ++++ python313: - Update to 3.13.9: - Library - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - Update to 3.13.8: - macOS - gh-124111: Update macOS installer to use Tcl/Tk 8.6.17. - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - Windows - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - gh-138896: Fix error installing C runtime on non-updated Windows machines - Tools/Demos - gh-139330: SBOM generation tool didn’t cross-check the version and checksum values against the Modules/expat/refresh.sh script, leading to the values becoming out-of-date during routine updates. - gh-137873: The iOS test runner has been simplified, resolving some issues that have been observed using the runner in GitHub Actions and Azure Pipelines test environments. - Tests - gh-139208: Fix regrtest --fast-ci --verbose: don’t ignore the - -verbose option anymore. Patch by Victor Stinner. - Security - gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. - gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. - gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard: ] ]> and ]] > no longer end the CDATA section. Add private method _set_support_cdata() which can be used to specify how to parse <[CDATA[ — as a CDATA section in foreign content (SVG or MathML) or as a bogus comment in the HTML namespace. - Library - gh-139312: Upgrade bundled libexpat to 2.7.3 - gh-139289: Do a real lazy-import on rlcompleter in pdb and restore the existing completer after importing rlcompleter. - gh-139210: Fix use-after-free when reporting unknown event in xml.etree.ElementTree.iterparse(). Patch by Ken Jin. - gh-138860: Lazy import rlcompleter in pdb to avoid deadlock in subprocess. - gh-112729: Fix crash when calling _interpreters.create when the process is out of memory. - gh-139076: Fix a bug in the pydoc module that was hiding functions in a Python module if they were implemented in an extension module and the module did not have __all__. - gh-138998: Update bundled libexpat to 2.7.2 - gh-130567: Fix possible crash in locale.strxfrm() due to a platform bug on macOS. - gh-138779: Support device numbers larger than 2**63-1 for the st_rdev field of the os.stat_result structure. - gh-128636: Fix crash in PyREPL when os.environ is overwritten with an invalid value for mac - gh-88375: Fix normalization of the robots.txt rules and URLs in the urllib.robotparser module. No longer ignore trailing ?. Distinguish raw special characters ?, = and & from the percent-encoded ones. - gh-138515: email is added to Emscripten build. - gh-111788: Fix parsing errors in the urllib.robotparser module. Don’t fail trying to parse weird paths. Don’t fail trying to decode non-UTF-8 robots.txt files. - gh-138432: zoneinfo.reset_tzpath() will now convert any os.PathLike objects it receives into strings before adding them to TZPATH. It will raise TypeError if anything other than a string is found after this conversion. If given an os.PathLike object that represents a relative path, it will now raise ValueError instead of TypeError, and present a more informative error message. - gh-138008: Fix segmentation faults in the ctypes module due to invalid argtypes. Patch by Dung Nguyen. - gh-60462: Fix locale.strxfrm() on Solaris (and possibly other platforms). - gh-138204: Forbid expansion of shared anonymous memory maps on Linux, which caused a bus error. - gh-138010: Fix an issue where defining a class with a @warnings.deprecated-decorated base class may not invoke the correct __init_subclass__() method in cases involving multiple inheritance. Patch by Brian Schubert. - gh-138133: Prevent infinite traceback loop when sending CTRL^C to Python through strace. - gh-134869: Fix an issue where pressing Ctrl+C during tab completion in the REPL would leave the autocompletion menu in a corrupted state. - gh-137317: inspect.signature() now correctly handles classes that use a descriptor on a wrapped __init__() or __new__() method. Contributed by Yongyu Yan. - gh-137754: Fix import of the zoneinfo module if the C implementation of the datetime module is not available. - gh-137490: Handle ECANCELED in the same way as EINTR in signal.sigwaitinfo() on NetBSD. - gh-137477: Fix inspect.getblock(), inspect.getsourcelines() and inspect.getsource() for generator expressions. - gh-137017: Fix threading.Thread.is_alive to remain True until the underlying OS thread is fully cleaned up. This avoids false negatives in edge cases involving thread monitoring or premature threading.Thread.is_alive calls. - gh-136134: SMTP.auth_cram_md5() now raises an SMTPException instead of a ValueError if Python has been built without MD5 support. In particular, SMTP clients will not attempt to use this method even if the remote server is assumed to support it. Patch by Bénédikt Tran. - gh-136134: IMAP4.login_cram_md5 now raises an IMAP4.error if CRAM-MD5 authentication is not supported. Patch by Bénédikt Tran. - gh-135386: Fix opening a dbm.sqlite3 database for reading from read-only file or directory. - gh-126631: Fix multiprocessing forkserver bug which prevented __main__ from being preloaded. - gh-123085: In a bare call to importlib.resources.files(), ensure the caller’s frame is properly detected when importlib.resources is itself available as a compiled module only (no source). - gh-118981: Fix potential hang in multiprocessing.popen_spawn_posix that can happen when the child proc dies early by closing the child fds right away. - gh-78319: UTF8 support for the IMAP APPEND command has been made RFC compliant. - bpo-38735: Fix failure when importing a module from the root directory on unix-like platforms with sys.pycache_prefix set. - bpo-41839: Allow negative priority values from os.sched_get_priority_min() and os.sched_get_priority_max() functions. - Core and Builtins - gh-134466: Don’t run PyREPL in a degraded environment where setting termios attributes is not allowed. - gh-71810: Raise OverflowError for (-1).to_bytes() for signed conversions when bytes count is zero. Patch by Sergey B Kirpichev. - gh-105487: Remove non-existent __copy__(), __deepcopy__(), and __bases__ from the __dir__() entries of types.GenericAlias. - gh-134163: Fix a hang when the process is out of memory inside an exception handler. - gh-138479: Fix a crash when a generic object’s __typing_subst__ returns an object that isn’t a tuple. - gh-137576: Fix for incorrect source code being shown in tracebacks from the Basic REPL when PYTHONSTARTUP is given. Patch by Adam Hartz. - gh-132744: Certain calls now check for runaway recursion and respect the system recursion limit. - C API - gh-87135: Attempting to acquire the GIL after runtime finalization has begun in a different thread now causes the thread to hang rather than terminate, which avoids potential crashes or memory corruption caused by attempting to terminate a thread that is running code not specifically designed to support termination. In most cases this hanging is harmless since the process will soon exit anyway. While not officially marked deprecated until 3.14, PyThread_exit_thread is no longer called internally and remains solely for interface compatibility. Its behavior is inconsistent across platforms, and it can only be used safely in the unlikely case that every function in the entire call stack has been designed to support the platform-dependent termination mechanism. It is recommended that users of this function change their design to not require thread termination. In the unlikely case that thread termination is needed and can be done safely, users may migrate to calling platform-specific APIs such as pthread_exit (POSIX) or _endthreadex (Windows) directly. - Build - gh-135734: Python can correctly be configured and built with ./configure --enable-optimizations --disable-test-modules. Previously, the profile data generation step failed due to PGO tests where immortalization couldn’t be properly suppressed. Patch by Bénédikt Tran. ++++ python313-documentation: - Update to 3.13.9: - Library - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - Update to 3.13.8: - macOS - gh-124111: Update macOS installer to use Tcl/Tk 8.6.17. - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - Windows - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - gh-138896: Fix error installing C runtime on non-updated Windows machines - Tools/Demos - gh-139330: SBOM generation tool didn’t cross-check the version and checksum values against the Modules/expat/refresh.sh script, leading to the values becoming out-of-date during routine updates. - gh-137873: The iOS test runner has been simplified, resolving some issues that have been observed using the runner in GitHub Actions and Azure Pipelines test environments. - Tests - gh-139208: Fix regrtest --fast-ci --verbose: don’t ignore the - -verbose option anymore. Patch by Victor Stinner. - Security - gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. - gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. - gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard: ] ]> and ]] > no longer end the CDATA section. Add private method _set_support_cdata() which can be used to specify how to parse <[CDATA[ — as a CDATA section in foreign content (SVG or MathML) or as a bogus comment in the HTML namespace. - Library - gh-139312: Upgrade bundled libexpat to 2.7.3 - gh-139289: Do a real lazy-import on rlcompleter in pdb and restore the existing completer after importing rlcompleter. - gh-139210: Fix use-after-free when reporting unknown event in xml.etree.ElementTree.iterparse(). Patch by Ken Jin. - gh-138860: Lazy import rlcompleter in pdb to avoid deadlock in subprocess. - gh-112729: Fix crash when calling _interpreters.create when the process is out of memory. - gh-139076: Fix a bug in the pydoc module that was hiding functions in a Python module if they were implemented in an extension module and the module did not have __all__. - gh-138998: Update bundled libexpat to 2.7.2 - gh-130567: Fix possible crash in locale.strxfrm() due to a platform bug on macOS. - gh-138779: Support device numbers larger than 2**63-1 for the st_rdev field of the os.stat_result structure. - gh-128636: Fix crash in PyREPL when os.environ is overwritten with an invalid value for mac - gh-88375: Fix normalization of the robots.txt rules and URLs in the urllib.robotparser module. No longer ignore trailing ?. Distinguish raw special characters ?, = and & from the percent-encoded ones. - gh-138515: email is added to Emscripten build. - gh-111788: Fix parsing errors in the urllib.robotparser module. Don’t fail trying to parse weird paths. Don’t fail trying to decode non-UTF-8 robots.txt files. - gh-138432: zoneinfo.reset_tzpath() will now convert any os.PathLike objects it receives into strings before adding them to TZPATH. It will raise TypeError if anything other than a string is found after this conversion. If given an os.PathLike object that represents a relative path, it will now raise ValueError instead of TypeError, and present a more informative error message. - gh-138008: Fix segmentation faults in the ctypes module due to invalid argtypes. Patch by Dung Nguyen. - gh-60462: Fix locale.strxfrm() on Solaris (and possibly other platforms). - gh-138204: Forbid expansion of shared anonymous memory maps on Linux, which caused a bus error. - gh-138010: Fix an issue where defining a class with a @warnings.deprecated-decorated base class may not invoke the correct __init_subclass__() method in cases involving multiple inheritance. Patch by Brian Schubert. - gh-138133: Prevent infinite traceback loop when sending CTRL^C to Python through strace. - gh-134869: Fix an issue where pressing Ctrl+C during tab completion in the REPL would leave the autocompletion menu in a corrupted state. - gh-137317: inspect.signature() now correctly handles classes that use a descriptor on a wrapped __init__() or __new__() method. Contributed by Yongyu Yan. - gh-137754: Fix import of the zoneinfo module if the C implementation of the datetime module is not available. - gh-137490: Handle ECANCELED in the same way as EINTR in signal.sigwaitinfo() on NetBSD. - gh-137477: Fix inspect.getblock(), inspect.getsourcelines() and inspect.getsource() for generator expressions. - gh-137017: Fix threading.Thread.is_alive to remain True until the underlying OS thread is fully cleaned up. This avoids false negatives in edge cases involving thread monitoring or premature threading.Thread.is_alive calls. - gh-136134: SMTP.auth_cram_md5() now raises an SMTPException instead of a ValueError if Python has been built without MD5 support. In particular, SMTP clients will not attempt to use this method even if the remote server is assumed to support it. Patch by Bénédikt Tran. - gh-136134: IMAP4.login_cram_md5 now raises an IMAP4.error if CRAM-MD5 authentication is not supported. Patch by Bénédikt Tran. - gh-135386: Fix opening a dbm.sqlite3 database for reading from read-only file or directory. - gh-126631: Fix multiprocessing forkserver bug which prevented __main__ from being preloaded. - gh-123085: In a bare call to importlib.resources.files(), ensure the caller’s frame is properly detected when importlib.resources is itself available as a compiled module only (no source). - gh-118981: Fix potential hang in multiprocessing.popen_spawn_posix that can happen when the child proc dies early by closing the child fds right away. - gh-78319: UTF8 support for the IMAP APPEND command has been made RFC compliant. - bpo-38735: Fix failure when importing a module from the root directory on unix-like platforms with sys.pycache_prefix set. - bpo-41839: Allow negative priority values from os.sched_get_priority_min() and os.sched_get_priority_max() functions. - Core and Builtins - gh-134466: Don’t run PyREPL in a degraded environment where setting termios attributes is not allowed. - gh-71810: Raise OverflowError for (-1).to_bytes() for signed conversions when bytes count is zero. Patch by Sergey B Kirpichev. - gh-105487: Remove non-existent __copy__(), __deepcopy__(), and __bases__ from the __dir__() entries of types.GenericAlias. - gh-134163: Fix a hang when the process is out of memory inside an exception handler. - gh-138479: Fix a crash when a generic object’s __typing_subst__ returns an object that isn’t a tuple. - gh-137576: Fix for incorrect source code being shown in tracebacks from the Basic REPL when PYTHONSTARTUP is given. Patch by Adam Hartz. - gh-132744: Certain calls now check for runaway recursion and respect the system recursion limit. - C API - gh-87135: Attempting to acquire the GIL after runtime finalization has begun in a different thread now causes the thread to hang rather than terminate, which avoids potential crashes or memory corruption caused by attempting to terminate a thread that is running code not specifically designed to support termination. In most cases this hanging is harmless since the process will soon exit anyway. While not officially marked deprecated until 3.14, PyThread_exit_thread is no longer called internally and remains solely for interface compatibility. Its behavior is inconsistent across platforms, and it can only be used safely in the unlikely case that every function in the entire call stack has been designed to support the platform-dependent termination mechanism. It is recommended that users of this function change their design to not require thread termination. In the unlikely case that thread termination is needed and can be done safely, users may migrate to calling platform-specific APIs such as pthread_exit (POSIX) or _endthreadex (Windows) directly. - Build - gh-135734: Python can correctly be configured and built with ./configure --enable-optimizations --disable-test-modules. Previously, the profile data generation step failed due to PGO tests where immortalization couldn’t be properly suppressed. Patch by Bénédikt Tran. ++++ python313-nogil: - Update to 3.13.9: - Library - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - Update to 3.13.8: - macOS - gh-124111: Update macOS installer to use Tcl/Tk 8.6.17. - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - Windows - gh-139573: Updated bundled version of OpenSSL to 3.0.18. - gh-138896: Fix error installing C runtime on non-updated Windows machines - Tools/Demos - gh-139330: SBOM generation tool didn’t cross-check the version and checksum values against the Modules/expat/refresh.sh script, leading to the values becoming out-of-date during routine updates. - gh-137873: The iOS test runner has been simplified, resolving some issues that have been observed using the runner in GitHub Actions and Azure Pipelines test environments. - Tests - gh-139208: Fix regrtest --fast-ci --verbose: don’t ignore the - -verbose option anymore. Patch by Victor Stinner. - Security - gh-139400: xml.parsers.expat: Make sure that parent Expat parsers are only garbage-collected once they are no longer referenced by subparsers created by ExternalEntityParserCreate(). Patch by Sebastian Pipping. - gh-139283: sqlite3: correctly handle maximum number of rows to fetch in Cursor.fetchmany and reject negative values for Cursor.arraysize. Patch by Bénédikt Tran. - gh-135661: Fix CDATA section parsing in html.parser.HTMLParser according to the HTML5 standard: ] ]> and ]] > no longer end the CDATA section. Add private method _set_support_cdata() which can be used to specify how to parse <[CDATA[ — as a CDATA section in foreign content (SVG or MathML) or as a bogus comment in the HTML namespace. - Library - gh-139312: Upgrade bundled libexpat to 2.7.3 - gh-139289: Do a real lazy-import on rlcompleter in pdb and restore the existing completer after importing rlcompleter. - gh-139210: Fix use-after-free when reporting unknown event in xml.etree.ElementTree.iterparse(). Patch by Ken Jin. - gh-138860: Lazy import rlcompleter in pdb to avoid deadlock in subprocess. - gh-112729: Fix crash when calling _interpreters.create when the process is out of memory. - gh-139076: Fix a bug in the pydoc module that was hiding functions in a Python module if they were implemented in an extension module and the module did not have __all__. - gh-138998: Update bundled libexpat to 2.7.2 - gh-130567: Fix possible crash in locale.strxfrm() due to a platform bug on macOS. - gh-138779: Support device numbers larger than 2**63-1 for the st_rdev field of the os.stat_result structure. - gh-128636: Fix crash in PyREPL when os.environ is overwritten with an invalid value for mac - gh-88375: Fix normalization of the robots.txt rules and URLs in the urllib.robotparser module. No longer ignore trailing ?. Distinguish raw special characters ?, = and & from the percent-encoded ones. - gh-138515: email is added to Emscripten build. - gh-111788: Fix parsing errors in the urllib.robotparser module. Don’t fail trying to parse weird paths. Don’t fail trying to decode non-UTF-8 robots.txt files. - gh-138432: zoneinfo.reset_tzpath() will now convert any os.PathLike objects it receives into strings before adding them to TZPATH. It will raise TypeError if anything other than a string is found after this conversion. If given an os.PathLike object that represents a relative path, it will now raise ValueError instead of TypeError, and present a more informative error message. - gh-138008: Fix segmentation faults in the ctypes module due to invalid argtypes. Patch by Dung Nguyen. - gh-60462: Fix locale.strxfrm() on Solaris (and possibly other platforms). - gh-138204: Forbid expansion of shared anonymous memory maps on Linux, which caused a bus error. - gh-138010: Fix an issue where defining a class with a @warnings.deprecated-decorated base class may not invoke the correct __init_subclass__() method in cases involving multiple inheritance. Patch by Brian Schubert. - gh-138133: Prevent infinite traceback loop when sending CTRL^C to Python through strace. - gh-134869: Fix an issue where pressing Ctrl+C during tab completion in the REPL would leave the autocompletion menu in a corrupted state. - gh-137317: inspect.signature() now correctly handles classes that use a descriptor on a wrapped __init__() or __new__() method. Contributed by Yongyu Yan. - gh-137754: Fix import of the zoneinfo module if the C implementation of the datetime module is not available. - gh-137490: Handle ECANCELED in the same way as EINTR in signal.sigwaitinfo() on NetBSD. - gh-137477: Fix inspect.getblock(), inspect.getsourcelines() and inspect.getsource() for generator expressions. - gh-137017: Fix threading.Thread.is_alive to remain True until the underlying OS thread is fully cleaned up. This avoids false negatives in edge cases involving thread monitoring or premature threading.Thread.is_alive calls. - gh-136134: SMTP.auth_cram_md5() now raises an SMTPException instead of a ValueError if Python has been built without MD5 support. In particular, SMTP clients will not attempt to use this method even if the remote server is assumed to support it. Patch by Bénédikt Tran. - gh-136134: IMAP4.login_cram_md5 now raises an IMAP4.error if CRAM-MD5 authentication is not supported. Patch by Bénédikt Tran. - gh-135386: Fix opening a dbm.sqlite3 database for reading from read-only file or directory. - gh-126631: Fix multiprocessing forkserver bug which prevented __main__ from being preloaded. - gh-123085: In a bare call to importlib.resources.files(), ensure the caller’s frame is properly detected when importlib.resources is itself available as a compiled module only (no source). - gh-118981: Fix potential hang in multiprocessing.popen_spawn_posix that can happen when the child proc dies early by closing the child fds right away. - gh-78319: UTF8 support for the IMAP APPEND command has been made RFC compliant. - bpo-38735: Fix failure when importing a module from the root directory on unix-like platforms with sys.pycache_prefix set. - bpo-41839: Allow negative priority values from os.sched_get_priority_min() and os.sched_get_priority_max() functions. - Core and Builtins - gh-134466: Don’t run PyREPL in a degraded environment where setting termios attributes is not allowed. - gh-71810: Raise OverflowError for (-1).to_bytes() for signed conversions when bytes count is zero. Patch by Sergey B Kirpichev. - gh-105487: Remove non-existent __copy__(), __deepcopy__(), and __bases__ from the __dir__() entries of types.GenericAlias. - gh-134163: Fix a hang when the process is out of memory inside an exception handler. - gh-138479: Fix a crash when a generic object’s __typing_subst__ returns an object that isn’t a tuple. - gh-137576: Fix for incorrect source code being shown in tracebacks from the Basic REPL when PYTHONSTARTUP is given. Patch by Adam Hartz. - gh-132744: Certain calls now check for runaway recursion and respect the system recursion limit. - C API - gh-87135: Attempting to acquire the GIL after runtime finalization has begun in a different thread now causes the thread to hang rather than terminate, which avoids potential crashes or memory corruption caused by attempting to terminate a thread that is running code not specifically designed to support termination. In most cases this hanging is harmless since the process will soon exit anyway. While not officially marked deprecated until 3.14, PyThread_exit_thread is no longer called internally and remains solely for interface compatibility. Its behavior is inconsistent across platforms, and it can only be used safely in the unlikely case that every function in the entire call stack has been designed to support the platform-dependent termination mechanism. It is recommended that users of this function change their design to not require thread termination. In the unlikely case that thread termination is needed and can be done safely, users may migrate to calling platform-specific APIs such as pthread_exit (POSIX) or _endthreadex (Windows) directly. - Build - gh-135734: Python can correctly be configured and built with ./configure --enable-optimizations --disable-test-modules. Previously, the profile data generation step failed due to PGO tests where immortalization couldn’t be properly suppressed. Patch by Bénédikt Tran. ++++ saptune: - update package version of saptune to 3.2.1 * restore CPU performance settings on AWS and Google Cloud (changes Note 2205917, 2684254 and 3577842) (bsc#1250217) * SAP Note 2993054 updated to Version 4 add parameter setting for net.ipv4.tcp_retries2 ++++ suse-migration-services: - Fixed test_check_lsm_migration unit test The test did not mock shutil.which and thus was really looking for the tool to be present on the system. If not present on the system the test failed. This commit fixes it. - Fix setup_host_network_test by mocking os.makedirs When '/etc/udev/' doesn't exist the test fails. But the call should be mocked anyway and not actually executed on the system. - wicked2nm: log network state on nm-online failure ------------------------------------------------------------------ ------------------ 2025-10-14 - Oct 14 2025 ------------------- ------------------------------------------------------------------ ++++ agama: - Do not log errors when retrieving NetworkManager secrets to prevent leaking them (bsc#1251898). ++++ agama-web-ui: - Fixed the check about which DASDs can be formatted (bsc#1243795). ++++ binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ kernel-64kb: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-64kb: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-64kb: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-default: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-default: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-default: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-rt: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-rt: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-rt: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ cross-aarch64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-arm-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-avr-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-bpf-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-epiphany-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-hppa-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-hppa64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-i386-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-ia64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-loongarch64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-m68k-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-mips-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-ppc-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-ppc64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-ppc64le-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-pru-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-riscv64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-rx-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-s390-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-s390x-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-sparc-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-sparc64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-spu-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-x86_64-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ cross-xtensa-binutils: - Update to version 2.45: * New versioned release of libsframe.so.2 * s390: tools now support SFrame format 2; recognize "z17" as CPU name [bsc#1247105, jsc#IBM-1485] * sframe sections are now of ELF section type SHT_GNU_SFRAME. * sframe secions generated by the assembler have SFRAME_F_FDE_FUNC_START_PCREL set. * riscv: Support more extensions: standard: Zicfiss v1.0, Zicfilp v1.0, Zcmp v1.0, Zcmt v1.0, Smrnmi v1.0, S[sm]dbltrp v1.0, S[sm]ctr v1.0, ssqosid v1.0, ssnpm v1.0, smnpm v1.0, smmpm v1.0, sspm v1.0, supm v1.0, sha v1.0, zce v1.0, smcdeleg v1.0, ssccfg v1.0, svvptc v1.0, zilsd v1.0, zclsd v1.0, smrnmi v1.0; vendor: CORE-V, xcvbitmanip v1.0 and xcvsimd v1.0; SiFive, xsfvqmaccdod v1.0, xsfvqmaccqoqv1.0 and xsfvfnrclipxfqf v1.0; T-Head: xtheadvdot v1.0; MIPS: xmipscbop v1.0, xmipscmov v1.0, xmipsexectl v1.0, xmipslsp v1.0. * Support RISC-V privileged version 1.13, profiles 20/22/23, and .bfloat16 directive. * x86: Add support for these ISAs: Intel Diamond Rapids AMX, MOVRS, AVX10.2 (including SM4), MSR_IMM; Zhaoxin PadLock PHE2, RNG2, GMI, XMODX. Drop support for AVX10.2 256 bit rounding. * arm: Add support for most of Armv9.6, enabled by -march=armv9.6-a and extensions '+cmpbr', '+f8f16mm', '+f8f32mm', '+fprcvt', '+lsfe', '+lsui', '+occmo', '+pops', '+sme2p2', '+ssve-aes', '+sve-aes', '+sve-aes2', '+sve-bfscale', '+sve-f16f32mm' and '+sve2p2'. * Predefined symbols "GAS(version)" and, on non-release builds, "GAS(date)" are now being made available. * Add .errif and .warnif directives. * linker: - Add --image-base= option to the ELF linker to behave the same as -Ttext-segment for compatibility with LLD. - Add support for mixed LTO and non-LTO codes in relocatable output. - s390: linker generates .eh_frame and/or .sframe for linker generated .plt sections by default (can be disabled by --no-ld-generated-unwind-info). - riscv: add new PLT formats, and GNU property merge rules for zicfiss and zicfilp extensions. - gold is no longer included - Contains fixes for these non-CVEs (not security bugs per upstreams SECURITY.md): * bsc#1236632 aka CVE-2025-0840 aka PR32560 * bsc#1236977 aka CVE-2025-1149 aka PR32576 * bsc#1236978 aka CVE-2025-1148 aka PR32576 * bsc#1236999 aka CVE-2025-1176 aka PR32636 * bsc#1237000 aka CVE-2025-1153 aka PR32603 * bsc#1237001 aka CVE-2025-1152 aka PR32576 * bsc#1237003 aka CVE-2025-1151 aka PR32576 * bsc#1237005 aka CVE-2025-1150 aka PR32576 * bsc#1237018 aka CVE-2025-1178 aka PR32638 * bsc#1237019 aka CVE-2025-1181 aka PR32643 * bsc#1237020 aka CVE-2025-1180 aka PR32642 * bsc#1237021 aka CVE-2025-1179 aka PR32640 * bsc#1237042 aka CVE-2025-1182 aka PR32644 * bsc#1240870 aka CVE-2025-3198 aka PR32716 * bsc#1243756 aka CVE-2025-5244 aka PR32858 * bsc#1243760 aka CVE-2025-5245 aka PR32829 * bsc#1246481 aka CVE-2025-7545 aka PR33049 * bsc#1246486 aka CVE-2025-7546 aka PR33050 * bsc#1247114 aka CVE-2025-8224 aka PR32109 * bsc#1247117 aka CVE-2025-8225 no PR - Add these backport patches: * pr32556.diff for bsc#1236976 aka CVE-2025-1147 aka PR32556 * pr33457.diff for bsc#1250632 aka CVE-2025-11083 aka PR33457 * pr33452.diff for bsc#1251275 aka CVE-2025-11412 aka PR33452 * pr33456.diff and pr33456-2.diff for bsc#1251276 aka CVE-2025-11413 aka PR33456 * pr33450.diff for bsc#1251277 aka CVE-2025-11414 aka PR33450 * pr33499.diff for bsc#1251794 aka CVE-2025-11494 aka PR33499 * pr33502.diff for bsc#1251795 aka CVE-2025-11495 aka PR33502 - Adjust binutils-disable-code-arch-error.diff, binutils-revert-nm-symversion.diff, binutils-revert-plt32-in-branches.diff, binutils-revert-rela.diff, binutils-skip-rpaths.patch - Remove pr33029.patch (upstreamed), enable-targets-gold.diff (obsolete), binutils-2.43.tar.bz2.sig, binutils-2.43.tar.bz2, binutils-2.43-branch.diff.gz - Add binutils-2.45.tar.bz2.sig, binutils-2.45.tar.bz2, binutils-2.45-branch.diff.gz - Rename binutils-fix-branch.diff to binutils-fix-branch.diff.templ as long as its empty. ++++ dtb-aarch64: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ dtb-aarch64: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ dtb-aarch64: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ gnome-browser-connector: - add unzip as a requires, otherwise the extensions can't get extracted ++++ kernel-source: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-source: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-source: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-docs: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-docs: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-docs: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-kvmsmall: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-kvmsmall: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-kvmsmall: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-build: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-build: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-build: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-qa: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-qa: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-obs-qa: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-syms: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-syms: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-syms: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-zfcpdump: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-zfcpdump: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ kernel-zfcpdump: - ftrace: Also allocate and copy hash for reading of filter files (bsc#1250032 CVE-2025-39813). - commit cef7211 - media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe (git-fixes). - commit a1733f5 - Disable CET before shutdown by tboot (bsc#1247950). Tboot isn't compatible with CET (yet). So use an out-of-tree patch provided by Intel to disable CET before jumping into tboot as part of the shutdown sequence. - commit 25a6f98 - drm/amd/display: Enable Dynamic DTBCLK Switch (bsc#1243112). - drm/amdgpu: Report individual reset error (bsc#1243112). - drm/amd: Check whether secure display TA loaded successfully (bsc#1243112). - drm/amdkfd: Fix mmap write lock not release (bsc#1243112). - drm/amdgpu: Fix for GPU reset being blocked by KIQ I/O (bsc#1243112). - drm/amd: Avoid evicting resources at S5 (bsc#1243112). - drm/amdgpu/mes12: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes11: implement detect and reset callback (bsc#1243112). - drm/amdgpu/mes: add front end for detect and reset hung queue (bsc#1243112). - drm/amd/amdgpu: Implement MES suspend/resume gang functionality for v12 (bsc#1243112). - drm/amdgpu/vpe: cancel delayed work in hw_fini (bsc#1243112). - commit d1679a6 - ftrace: Fix potential warning in trace_printk_seq during ftrace_dump (bsc#1250032 CVE-2025-39813). - commit 596515e - x86/bugs: Fix GDS mitigation selecting when mitigation is off (git-fixes). - commit 75fb73f - x86/bugs: Add attack vector controls for SSB (git-fixes). - commit ae652b4 - drm/amd: Only restore cached manual clock settings in restore if OD enabled (bsc#1243112). - drm/amd/display: Add NULL check for stream before dereference in 'dm_vupdate_high_irq' (bsc#1243112). - drm/amd/display: Fix vupdate_offload_work doc (bsc#1243112). - drm/amdgpu: fix link error for !PM_SLEEP (bsc#1243112). - commit 5e5cc07 - drm/amd/display: more liberal vmin/vmax update for freesync (bsc#1243112). - drm/amd/display: fix dmub access race condition (bsc#1243112). - commit 3d8614e - Drop bogus AMDGPU backport patch from 6.12.y stable Deleted: patches.suse/drm-amdgpu-VCN-v5_0_1-to-prevent-FW-checking-RB-duri.patch The backport was a mess, and the added code wasn't actually used at all. - commit 4e052cc - drm/amdgpu: Avoid rma causes GPU duplicate reset (bsc#1243112). - drm/amd: Restore cached manual clock settings during resume (bsc#1243112). - PM: hibernate: Fix pm_hibernation_mode_is_suspend() build breakage (bsc#1243112). - drm/amd: Fix hybrid sleep (bsc#1243112). - PM: hibernate: Add pm_hibernation_mode_is_suspend() (bsc#1243112). - PM: hibernate: Add stub for pm_hibernate_is_recovering() (bsc#1243112). - drm/amdgpu: do not resume device in thaw for normal hibernation (bsc#1243112). - PM: hibernate: add new api pm_hibernate_is_recovering() (bsc#1243112). - commit f6582d3 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting - kabi (bsc#1245630). - commit cf64417 - trace/fgraph: Fix error handling (git-fixes). - commit 96a9de8 - trace/fgraph: Fix the warning caused by missing unregister notifier (bsc#1248211 CVE-2025-38539). - commit 0901700 - x86/bugs: Select best SRSO mitigation (git-fixes). - commit b4f33d4 - x86/bugs: Print enabled attack vectors (git-fixes). - commit b08aa53 - x86/bugs: Add attack vector controls for TSA (git-fixes). - commit 7acc191 - cpu: Define attack vectors (git-fixes). - commit c8fa133 - x86/pti: Add attack vector controls for PTI (git-fixes). - commit 78147b6 - x86/bugs: Add attack vector controls for ITS (git-fixes). - commit 3b568ea - x86/bugs: Add attack vector controls for SRSO (git-fixes). - commit 0e4f2f2 - x86/bugs: Add attack vector controls for L1TF (git-fixes). - commit 987b389 - x86/bugs: Add attack vector controls for spectre_v2 (git-fixes). - commit dd53eb3 - x86/bugs: Add attack vector controls for BHI (git-fixes). - commit 5656bb2 - x86/bugs: Add attack vector controls for spectre_v2_user (git-fixes). - commit 16df3c7 - x86/bugs: Add attack vector controls for retbleed (git-fixes). - commit 5580d6e - x86/bugs: Add attack vector controls for spectre_v1 (git-fixes). - commit cc85e5a - x86/bugs: Add attack vector controls for GDS (git-fixes). - commit 6711126 - x86/bugs: Add attack vector controls for SRBDS (git-fixes). - commit 1fea28a - x86/bugs: Add attack vector controls for RFDS (git-fixes). - commit 9771c45 - x86/bugs: Add attack vector controls for MMIO (git-fixes). - commit 2753f65 - x86/bugs: Add attack vector controls for TAA (git-fixes). - commit c1e124c - x86/bugs: Add attack vector controls for MDS (git-fixes). - commit 052575a - x86/bugs: Define attack vectors relevant for each bug (git-fixes). - commit 83936cf - x86/Kconfig: Add arch attack vector support (git-fixes). - commit bb7b76d - Documentation/x86: Document new attack vector controls (git-fixes). - commit 507712f - RDMA/mana_ib: Extend modify QP (bsc#1251135). - RDMA/mana_ib: Drain send wrs of GSI QP (bsc#1251135). - net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency (bsc#1248754). - cnic: Fix use-after-free bugs in cnic_delete_task (CVE-2025-39945 bsc#1251230). - commit b1cda45 ++++ poppler: - security update - added patches CVE-2025-52885 [bsc#1251940], raw pointers can lead to dangling pointers when the vector is resized * poppler-CVE-2025-52885.patch ++++ poppler-qt5: - security update - added patches CVE-2025-52885 [bsc#1251940], raw pointers can lead to dangling pointers when the vector is resized * poppler-CVE-2025-52885.patch ++++ poppler-qt6: - security update - added patches CVE-2025-52885 [bsc#1251940], raw pointers can lead to dangling pointers when the vector is resized * poppler-CVE-2025-52885.patch ++++ nvidia-open-driver-G06-signed-cuda: - changed Requires to * nvidia-modprobe = %version * nvidia-persitenced = %version it has been >= before ... ++++ nvidia-open-driver-G06-signed-cuda: - changed Requires to * nvidia-modprobe = %version * nvidia-persitenced = %version it has been >= before ... ++++ nvidia-open-driver-G06-signed: - changed Requires to * nvidia-modprobe = %version * nvidia-persitenced = %version it has been >= before ... ++++ nvidia-open-driver-G06-signed: - changed Requires to * nvidia-modprobe = %version * nvidia-persitenced = %version it has been >= before ... ++++ python-acme: - Update to 5.1.0 * The function acme.crypto_util.make_self_signed_cert was deprecated and will be removed in a future release. ++++ python-certbot: - Update to 5.1.0 * sync with the rest of certbot ecosystem ++++ python-certbot-apache: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-cloudflare: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-digitalocean: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-dnsimple: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-dnsmadeeasy: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-linode: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-luadns: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-nsone: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-ovh: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-rfc2136: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-dns-route53: - update to version 5.1.0 * sync with the main certbot package ++++ python-certbot-nginx: - update to version 5.1.0 * certbot-nginx no longer creates and uses self-signed certificates as an intermediate step when installing certificates. * Fixed a bug in certbot-nginx that'd leave nginx configured with self-signed certificates if a user ran certbot enhance and they didn't have matching SSL server blocks. ------------------------------------------------------------------ ------------------ 2025-10-13 - Oct 13 2025 ------------------- ------------------------------------------------------------------ ++++ alloy: - update to 1.11.2 (1.11.1 was not released): * Bugfixes - Fix potential deadlock in loki.source.journal when stopping or reloading the component. (@thampiotr) - Honor sync timeout when waiting for network availability for prometheus.operator.* components. (@dehaansa) - Fix prometheus.exporter.cloudwatch to not always emit debug logs but respect debug property. (@kalleep) - Fix an issue where component shutdown could block indefinitely by adding a warning log message and a deadline of 10 minutes. The deadline can be configured with the - -feature.component-shutdown-deadline flag if the default is not suitable. (@thampiotr) - Fix potential deadlocks in loki.source.file and loki.source.journal when component is shutting down. (@kalleep, @thampiotr) ++++ alloy: - update to 1.11.2 (1.11.1 was not released): * Bugfixes - Fix potential deadlock in loki.source.journal when stopping or reloading the component. (@thampiotr) - Honor sync timeout when waiting for network availability for prometheus.operator.* components. (@dehaansa) - Fix prometheus.exporter.cloudwatch to not always emit debug logs but respect debug property. (@kalleep) - Fix an issue where component shutdown could block indefinitely by adding a warning log message and a deadline of 10 minutes. The deadline can be configured with the - -feature.component-shutdown-deadline flag if the default is not suitable. (@thampiotr) - Fix potential deadlocks in loki.source.file and loki.source.journal when component is shutting down. (@kalleep, @thampiotr) ++++ kernel-64kb: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-64kb: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-64kb: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-default: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-default: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-default: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-rt: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-rt: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-rt: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ dtb-aarch64: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ dtb-aarch64: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ dtb-aarch64: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ go1.24: - go1.24.9 (released 2025-10-13) includes fixes to the crypto/x509 package. Refs boo#1236217 go1.24 release tracking * go#75860 crypto/x509: TLS validation fails for FQDNs with trailing dot - Packaging improvements: * Add net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch needed today and will be available in the next upstream release ++++ go1.24: - go1.24.9 (released 2025-10-13) includes fixes to the crypto/x509 package. Refs boo#1236217 go1.24 release tracking * go#75860 crypto/x509: TLS validation fails for FQDNs with trailing dot - Packaging improvements: * Add net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch needed today and will be available in the next upstream release ++++ go1.25: - go1.25.3 (released 2025-10-13) includes fixes to the crypto/x509 package. Refs boo#1244485 go1.25 release tracking * go#75861 crypto/x509: TLS validation fails for FQDNs with trailing dot * go#75777 spec: Go1.25 spec should be dated closer to actual release date - Packaging improvements: * Add net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch needed today and will be available in the next upstream release ++++ go1.25: - go1.25.3 (released 2025-10-13) includes fixes to the crypto/x509 package. Refs boo#1244485 go1.25 release tracking * go#75861 crypto/x509: TLS validation fails for FQDNs with trailing dot * go#75777 spec: Go1.25 spec should be dated closer to actual release date - Packaging improvements: * Add net-url-allow-IP-literals-with-IPv4-mapped-IPv6-addresses.patch needed today and will be available in the next upstream release ++++ grub2: - Fix "sparse file not allowed" error after grub2-reboot (bsc#1245738) * grub2-grubenv-in-btrfs-header.patch - Fix PowerPC network boot prefix to correctly locate grub.cfg (bsc#1249385) * 0001-ieee1275-Use-net-config-for-boot-location-instead-of.patch ++++ kernel-source: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-source: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-source: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-docs: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-docs: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-docs: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-kvmsmall: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-kvmsmall: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-kvmsmall: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-build: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-build: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-build: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-qa: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-qa: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-obs-qa: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-syms: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-syms: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-syms: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-zfcpdump: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-zfcpdump: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ kernel-zfcpdump: - powerpc/ftrace: ensure ftrace record ops are always set for NOPs (jsc#PED-10909 git-fixes). - commit 27e3939 - powerpc/powernv/pci: Fix underflow and leak issue (bsc#1215199). - powerpc/pseries/msi: Fix potential underflow and leak issue (bsc#1215199). - powerpc/kvm: Fix ifdef to remove build warning (bsc#1215199). - KVM: PPC: Fix misleading interrupts comment in kvmppc_prepare_to_enter() (bsc#1215199). - powerpc: floppy: Add missing checks after DMA map (bsc#1215199). - commit 1ed7d5a - powerpc64/modules: correctly iterate over stubs in setup_ftrace_ool_stubs (jsc#PED-10909 git-fixes). - commit 5325db8 - USB: serial: option: add SIMCom 8230C compositions (stable-fixes). - Bluetooth: btusb: Add USB ID 2001:332a for D-Link AX9U rev. A1 (stable-fixes). - wifi: rtl8xxxu: Don't claim USB ID 07b8:8188 (stable-fixes). - wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188 (stable-fixes). - drm/amdgpu: Enable MES lr_compute_wa by default (stable-fixes). - driver core/PM: Set power.no_callbacks along with power.no_pm (stable-fixes). - platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list (stable-fixes). - can: rcar_canfd: Fix controller mode setting (stable-fixes). - can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled (stable-fixes). - ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue (stable-fixes). - ASoC: amd: acp: Adjust pdm gain value (stable-fixes). - platform/x86/amd/pmf: Support new ACPI ID AMDI0108 (stable-fixes). - platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list (stable-fixes). - hid: fix I2C read buffer overflow in raw_event() for mcp2221 (stable-fixes). - drm/amd/include : Update MES v12 API for fence update (stable-fixes). - drm/amd/include : MES v11 and v12 API header update (stable-fixes). - drm/amd : Update MES API header file for v11 & v12 (stable-fixes). - commit 0f46bd5 ++++ libvirt: - qemu: Add support for Intel TDX jsc#PED-9265 ++++ mcomix: - Update to 3.1.1: * Fix "context has already been set" error ++++ micro-editor: - Update to version 2.0.14: * matchbracestyle to choose whether to underline or highlight matching braces * matchbraceleft to choose whether to match brace to the left of the cursor * hltrailingws to highlight trailing whitespace * hltaberrors to highlight tab vs space inconsistencies * Add jump command to perform a relative goto * Add sub-word movement actions and improve word movements * Add paragraph selection actions and improve paragraph movements * Make Shift-PageUp/Down the default keybindings for SelectPageUp/Down * Add signatures support to improve filetype detection in ambiguous cases * Provide default.yaml for default syntax highlighting * Improvements in syntax highlighting for various languages * More generic support for mouse events handling * Add mouse release and mouse drag events * Make MouseMultiCursor toggle cursors * Better support for handling mouse events in lua * Better API for lua timers * Add onAnyEvent callback * Allow colorschemes to include other colorschemes * Give user's files in ~/.config/micro/ precedence over micro's built-in files * Respect umask when creating files * Smarter smartpaste * Make default fileformat value suited to the OS * Improve buffer view relocation after jumping to a far-away location * Improve return values of some actions for better action chaining * Autocomplete filetypes * Allow raw escape sequence to be bound with bind * Various small improvements * Fix various crashes * Fix micro killed by SIGINT sent to its shell job * Various fixes for setting local options * Various fixes for reloading settings via reload command * Various fixes for updating settings after changing filetype * Fix unneeded rewriting of settings.json * Fix overwriting persistent non-default settings in settings.json with temporary default settings * Don't apply rmtrailingws on autosave * Don't autosave unmodified buffer * Properly update autosave timer when the autosave option value changes * Fix opening filenames including colons with parsecursor * Fix replace to be able to insert '$' * Fix cursor moving to an unexpected location after a redo * Make cursor movements after selection consistent * Fix incorrect buffer view after reloading file * Fix lost mouse release events in case the pane becomes inactive * Add proper locking to LineArray to fix potential races * Cleanup indentation and trailing whitespace * Improve plugin documentation ++++ sbctl: - Update to version 0.18: * logging: fixup new go vet warning * workflows: add cc for cross compile * workflow: add sudo to apt * workflow: add pcsclite to ci * workflow: try enable cgo * go.mod: update golang.org/x/ dependencies * fix: avoid adding bogus Country attribute to subject DNs * sbctl: only store file if we did actually sign the file * installkernel: add post install hook for Debian's traditional installkernel * CI: missing libpcsclite pkg * workflows: add missing depends and new pattern keyword * Add yubikey example for create keys to the README * Initial yubikey backend keytype support * verify: ensure we pass args in correct order ++++ suse-migration-services: - Fixed LSM pre checks to be more robust When called on systemd without aa-status installed, the code runs into a traceback. Looking at the logic flow I believe this can be done more robust by directly checking for the availabilty of the tool. In addition the code uses python type hints which do not exists on the python used in SLE12 for which the code needs to stay compatible for some time. - Bump version: 2.1.24 → 2.1.25 - Bump Migration changelog version: 2.1.25 - shellcheck heavily complained Fix shell coding in run_migration and %post scripts to match with standards reported by shellcheck ------------------------------------------------------------------ ------------------ 2025-10-12 - Oct 12 2025 ------------------- ------------------------------------------------------------------ ++++ kernel-64kb: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-64kb: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-64kb: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-default: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-default: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-default: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-rt: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-rt: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-rt: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ dtb-aarch64: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ dtb-aarch64: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ dtb-aarch64: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-source: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-source: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-source: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-docs: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-docs: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-docs: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-kvmsmall: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-kvmsmall: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-kvmsmall: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-build: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-build: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-build: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-qa: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-qa: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-obs-qa: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-syms: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-syms: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-syms: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-zfcpdump: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-zfcpdump: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ kernel-zfcpdump: - rtc: optee: fix memory leak on driver removal (git-fixes). - rtc: x1205: Fix Xicor X1205 vendor prefix (git-fixes). - commit b6c4ddb ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ++++ openQA: - Update to version 5.1760245411.e3aeaaec: * Dependency cron 2025-10-12 ------------------------------------------------------------------ ------------------ 2025-10-11 - Oct 11 2025 ------------------- ------------------------------------------------------------------ ++++ scanner-databases: - database refresh on 2025-10-11 (bsc#1084929) ++++ kernel-64kb: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-64kb: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-64kb: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-default: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-default: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-default: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-rt: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-rt: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-rt: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ dtb-aarch64: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ dtb-aarch64: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ dtb-aarch64: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-source: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-source: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-source: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-docs: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-docs: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-docs: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-kvmsmall: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-kvmsmall: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-kvmsmall: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-build: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-build: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-build: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-qa: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-qa: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-obs-qa: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-syms: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-syms: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-syms: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-zfcpdump: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-zfcpdump: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ++++ kernel-zfcpdump: - drm/amd/display: Disable scaling on DCE6 for now (git-fixes). - drm/amd/display: Properly disable scaling on DCE6 (git-fixes). - drm/amd/display: Properly clear SCL_*_FILTER_CONTROL on DCE6 (git-fixes). - drm/amd/display: Add missing DCE6 SCL_HORZ_FILTER_INIT* SRIs (git-fixes). - drm/amdgpu: Add additional DCE6 SCL registers (git-fixes). - drm/xe/hw_engine_group: Fix double write lock release in error path (git-fixes). - drm/xe/uapi: loosen used tracking restriction (git-fixes). - drm/nouveau: fix bad ret code in nouveau_bo_move_prep (git-fixes). - drm/vmwgfx: Fix copy-paste typo in validation (git-fixes). - drm/vmwgfx: Fix Use-after-free in validation (git-fixes). - drm/vmwgfx: Fix a null-ptr access in the cursor snooper (git-fixes). - of: unittest: Fix device reference count leak in of_unittest_pci_node_verify (git-fixes). - ASoC: SOF: Intel: Read the LLP via the associated Link DMA channel (git-fixes). - ASoC: SOF: Intel: hda-pcm: Place the constraint on period time instead of buffer time (git-fixes). - ASoC: SOF: ipc4-topology: Account for different ChainDMA host buffer size (git-fixes). - ASoC: SOF: ipc4-topology: Correct the minimum host DMA buffer size (git-fixes). - ASoC: SOF: ipc3-topology: Fix multi-core and static pipelines tear down (git-fixes). - fbdev: Fix logic error in "offb" name match (git-fixes). - fbdev: simplefb: Fix use after free in simplefb_detach_genpds() (git-fixes). - gpio: wcd934x: mark the GPIO controller as sleeping (git-fixes). - crypto: essiv - Check ssize for decryption and in-place encryption (git-fixes). - tpm_tis: Fix incorrect arguments in tpm_tis_probe_irq_single (git-fixes). - commit 850e21e ------------------------------------------------------------------ ------------------ 2025-10-10 - Oct 10 2025 ------------------- ------------------------------------------------------------------ ++++ webkit2gtk3-soup2: - Update to version 2.50.1 (boo#1251975): + Improve text rendering performance. + Fix audio playback broken on instagram. + Fix rendering of layers with fractional transforms. + Fix the build with ENABLE(VIDEO) disabled. + Fix the build in s390x. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43343. - Drop webkit2gtk3-i586-build-fix.patch: Merged upstream. - Also pass ggc-min-expand=30 on s390x. Memory has been an issue there, at least on SLE. ++++ webkit2gtk3: - Update to version 2.50.1 (boo#1251975): + Improve text rendering performance. + Fix audio playback broken on instagram. + Fix rendering of layers with fractional transforms. + Fix the build with ENABLE(VIDEO) disabled. + Fix the build in s390x. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43343. - Drop webkit2gtk3-i586-build-fix.patch: Merged upstream. - Also pass ggc-min-expand=30 on s390x. Memory has been an issue there, at least on SLE. ++++ webkit2gtk4: - Update to version 2.50.1 (boo#1251975): + Improve text rendering performance. + Fix audio playback broken on instagram. + Fix rendering of layers with fractional transforms. + Fix the build with ENABLE(VIDEO) disabled. + Fix the build in s390x. + Fix several crashes and rendering issues. + Security fixes: CVE-2025-43343. - Drop webkit2gtk3-i586-build-fix.patch: Merged upstream. - Also pass ggc-min-expand=30 on s390x. Memory has been an issue there, at least on SLE. ++++ kernel-64kb: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-64kb: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-64kb: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-default: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-default: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-default: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-rt: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-rt: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-rt: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ dtb-aarch64: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ dtb-aarch64: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ dtb-aarch64: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-source: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-source: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-source: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-docs: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-docs: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-docs: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-kvmsmall: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-kvmsmall: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-kvmsmall: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-build: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-build: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-build: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-qa: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-qa: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-obs-qa: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-syms: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-syms: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-syms: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-zfcpdump: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-zfcpdump: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ kernel-zfcpdump: - x86/topology: Implement topology_is_core_online() to address SMT regression (jsc#PED-13815). - commit 13d76d5 - x86/smp: Fix mwait_play_dead() and acpi_processor_ffh_play_dead() noreturn behavior (jsc#PED-13815). - commit 24aa526 - ACPI/processor_idle: Export acpi_processor_ffh_play_dead() (jsc#PED-13815). - commit 7d8dbc7 - drm/amd/display: update sequential pg logic DCN35 (CVE-2025-38360 bsc#1247078). - Refresh patches.suse/drm-amd-display-Add-more-checks-for-DSC-HUBP-ONO-gua.patch. - commit ad27636 - drm/amd/display: add workaround flag to link to force FFE preset (stable-fixes). - commit 61c6ea5 - Refresh patches.suse/drm-amdgpu-Fix-Circular-Locking-Dependency-in-AMDGPU.patch Correct the wrong bool arguments, to align with the upstream behavior - commit 8db2492 - mm: memory-tiering: fix PGPROMOTE_CANDIDATE counting (bsc#1245630). - commit 0cbd971 - Reapply "x86/smp: Eliminate mwait_play_dead_cpuid_hint()" (jsc#PED-13815). - commit 5f6e3a3 - ACPI: processor: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 6cf1b0e - intel_idle: Rescan "dead" SMT siblings during initialization (jsc#PED-13815). - commit 19451cd - x86/smp: PM/hibernate: Split arch_resume_nosmt() (jsc#PED-13815). - commit 88ac4d0 - intel_idle: Use subsys_initcall_sync() for initialization (jsc#PED-13815). - commit 05a8782 - intel_idle: Provide the default enter_dead() handler (jsc#PED-13815). - commit 3fe4d1d - ACPI/processor_idle: Add FFH state handling (jsc#PED-13815). - commit bbf694a - x86/smp: Allow calling mwait_play_dead with an arbitrary hint (jsc#PED-13815). - commit ce38e7e - net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock (git-fixes). - commit 377678d ++++ maven-filtering: - Bogus dependency on plexus-xml (https://github.com/apache/maven-filtering/issues/286) ++++ mcphost: - Peparing for submission to Factory: * Clean up spec file, remove old tar balls. * On SUSE use SUSE Golang build macros. ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ openQA: - Update to version 5.1760108577.fd2f2a48: * Log unavailability due to high load only as warning * Filter job stats of scheduled products also by arch and build * Document how to disable image optimizations * Make image optimization errors stop the job producing an incomplete job * Improve wording in description about job stats API * Run `optipng` for real and handle errors if it fails ++++ wicked2nm: - Update to v1.4.0 * Activate only connections if present in the current system * Improve error output, exit codes and add flag to disable user hints * Add support for autoip-fallback ------------------------------------------------------------------ ------------------ 2025-10-9 - Oct 9 2025 ------------------- ------------------------------------------------------------------ ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ chromium: - Chromium 141.0.7390.76: * Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. - exclude the main tarball from the src.rpm to reduce size (it is anyway fully referenced, so no supply chain concern) ++++ kernel-64kb: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-64kb: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-64kb: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-default: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-default: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-default: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-rt: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-rt: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-rt: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ dtb-aarch64: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ dtb-aarch64: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ dtb-aarch64: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ gitea-tea: - add fix-CVE-2025-58190.patch, fixing bsc#1251663 - add fix-CVE-2025-47911.patch, fixing bsc#1251471 ++++ gitea-tea: - add fix-CVE-2025-58190.patch, fixing bsc#1251663 - add fix-CVE-2025-47911.patch, fixing bsc#1251471 ++++ kernel-source: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-source: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-source: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-docs: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-docs: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-docs: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-kvmsmall: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-kvmsmall: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-kvmsmall: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-build: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-build: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-build: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-qa: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-qa: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-obs-qa: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-syms: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-syms: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-syms: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-zfcpdump: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-zfcpdump: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ kernel-zfcpdump: - scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated (CVE-2025-38700 bsc#1249182). - commit b82e3fc - Update patches.suse/scsi-lpfc-Fix-buffer-free-clear-order-in-deferred-re.patch (bsc#1250519 bsc#1250247/CVE-2025-39841). Added in new bug number and CVE number. - commit 778e5da - netfilter: nft_objref: validate objref and objrefmap expressions (bsc#1250237). No CVE available yet, please see the bugzilla ticket referenced. - commit d6e82ec - README.BRANCH: mfranc@suse.cz leaving SUSE - commit 29cd3a3 - ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() (git-fixes). - commit d186b30 - ext4: fix an off-by-one issue during moving extents (git-fixes). - commit 176d807 - ext4: add ext4_sb_bread_nofail() helper function for ext4_free_branches() (git-fixes). - commit 9860491 - ext4: fix hole length calculation overflow in non-extent inodes (git-fixes). - commit b7d6d21 - ext4: don't try to clear the orphan_present feature block device is r/o (git-fixes). - commit 3758b29 - ext4: fix reserved gdt blocks handling in fsmap (git-fixes). - commit 82855aa - ext4: fix fsmap end of range reporting with bigalloc (git-fixes). - commit f381d1b - ext4: check fast symlink for ea_inode correctly (git-fixes). - commit 720dc5d - ext4: preserve SB_I_VERSION on remount (git-fixes). - commit 4cf6f00 - ext4: fix largest free orders lists corruption on mb_optimize_scan switch (git-fixes). - commit 6f98372 - ext4: fix zombie groups in average fragment size lists (git-fixes). - commit 8313998 - ext4: Make sure BH_New bit is cleared in ->write_end handler (git-fixes). - commit 8eb04f9 - ext4: ensure i_size is smaller than maxbytes (git-fixes). - commit f9c6d79 - ext4: factor out ext4_get_maxbytes() (git-fixes). - commit a0eb116 - ext4: fix calculation of credits for extent tree modification (git-fixes). - commit 3858fc4 - ext4: reorder capability check last (git-fixes). - commit 05df3ba - jbd2: do not try to recover wiped journal (git-fixes). - commit 72ca0c0 - ext4: do not convert the unwritten extents if data writeback fails (git-fixes). - commit 27c9400 - drm/amdgpu: Fix allocating extra dwords for rings (v2) (git-fixes). - drm/amd/display: remove output_tf_change flag (git-fixes). - drm/amd/display: Init DCN35 clocks from pre-os HW values (git-fixes). - drm/amd/amdgpu: Declare isp firmware binary file (stable-fixes). - drm/amd/display: Don't warn when missing DCE encoder caps (stable-fixes). - drm/amdgpu/gfx10: fix KGQ reset sequence (git-fixes). - drm/amd/display: Don't check for NULL divisor in fixpt code (git-fixes). - drm/amdgpu/mes: enable compute pipes across all MEC (git-fixes). - drm/amdgpu/mes: optimize compute loop handling (stable-fixes). - drm/amdgpu/vcn: fix ref counting for ring based profile handling (git-fixes). - commit 328f37b - fs: writeback: fix use-after-free in __mark_inode_dirty() (bsc#1250455 CVE-2025-39866). - commit dacb491 - kernfs: Fix UAF in polling when open file is released (bsc#1250379 CVE-2025-39881). - commit debfec6 - fs: Prevent file descriptor table allocations exceeding INT_MAX (bsc#1249512 CVE-2025-39756). - commit e9788bc - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs (git-fixes). - commit eabd40a - fs: Remove redundant errseq_set call in mark_buffer_write_io_error (git-fixes). - commit 26efe8f - fs: udf: fix OOB read in lengthAllocDescs handling (git-fixes). - commit e4638c4 - udf: Verify partition map count (git-fixes). - commit 19b7cc7 - udf: Make sure i_lenExtents is uptodate on inode eviction (git-fixes). - commit eba6a22 - readahead: fix return value of page_cache_next_miss() when no hole is found (git-fixes). - commit 17edc41 - fix a leak in fcntl_dirnotify() (git-fixes). - commit 8ed0d88 - fs: quota: create dedicated workqueue for quota_release_work (git-fixes). - commit 13c6f86 - isofs: Verify inode mode when loading from disk (git-fixes). - commit 9fe2789 - isofs: fix Y2038 and Y2156 issues in Rock Ridge TF entry (git-fixes). - commit 6d45c5a - mailbox: mtk-cmdq: Remove pm_runtime APIs from cmdq_mbox_send_data() (git-fixes). - mailbox: zynqmp-ipi: Fix SGI cleanup on unbind (git-fixes). - mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop (git-fixes). - mailbox: zynqmp-ipi: Remove dev.parent check in zynqmp_ipi_free_mboxes (git-fixes). - mailbox: zynqmp-ipi: Remove redundant mbox_controller_unregister() call (git-fixes). - Input: psxpad-spi - add a check for the return value of spi_setup() (git-fixes). - Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak (git-fixes). - crypto: rng - Ensure set_ent is always present (git-fixes). - commit 342754b - net_sched: gen_estimator: fix est_timer() vs CONFIG_PREEMPT_RT=y (CVE-2025-39900 bsc#1250758). - commit b0580b7 - arm64: mte: Do not flag the zero page as PG_mte_tagged (git-fixes) - commit a6bcfac ++++ suse-migration-services: - Do not evaluate wicked2nm output in precheck Instead evaluate the wicked2nm return code and display appropriate messages. Related to the following upstream fix openSUSE/wicked2nm#57 - Fix unit test for lsm check Missing test for the apparmor disabled case ------------------------------------------------------------------ ------------------ 2025-10-8 - Oct 8 2025 ------------------- ------------------------------------------------------------------ ++++ MozillaFirefox: - Firefox Extended Support Release 140.4.0 ESR * Fixed: Various security fixes. MFSA 2025-83 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 ++++ MozillaFirefox: - Firefox Extended Support Release 140.4.0 ESR * Fixed: Various security fixes. MFSA 2025-83 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 ++++ MozillaFirefox: - Firefox Extended Support Release 140.4.0 ESR * Fixed: Various security fixes. MFSA 2025-83 (bsc#1251263) * CVE-2025-11708 (bmo#1988931) Use-after-free in MediaTrackGraphImpl::GetInstance() * CVE-2025-11709 (bmo#1989127) Out of bounds read/write in a privileged process triggered by WebGL textures * CVE-2025-11710 (bmo#1989899) Cross-process information leaked due to malicious IPC messages * CVE-2025-11711 (bmo#1989978) Some non-writable Object properties could be modified * CVE-2025-11712 (bmo#1979536) An OBJECT tag type attribute overrode browser behavior on web resources without a content-type * CVE-2025-11713 (bmo#1986142) Potential user-assisted code execution in “Copy as cURL” command * CVE-2025-11714 (bmo#1973699, bmo#1989945, bmo#1990970, bmo#1991040, bmo#1992113) Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 * CVE-2025-11715 (bmo#1983838, bmo#1987624, bmo#1988244, bmo#1988912, bmo#1989734, bmo#1990085, bmo#1991899) Memory safety bugs fixed in Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144 ++++ aws-cli-cmd: - Use fixed python version 3.13 ++++ aws-cli-cmd: - Use fixed python version 3.13 ++++ aws-cli-cmd: - Use fixed python version 3.13 ++++ az-cli-cmd: - Use fixed python version 3.13 ++++ az-cli-cmd: - Use fixed python version 3.13 ++++ az-cli-cmd: - Use fixed python version 3.13 ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ chromium: - Chromium 141.0.7390.65 (boo#1251334): * CVE-2025-11458: Heap buffer overflow in Sync * CVE-2025-11460: Use after free in Storage * CVE-2025-11211: Out of bounds read in WebCodecs ++++ kernel-64kb: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-64kb: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-64kb: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-default: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-default: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-default: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-rt: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-rt: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-rt: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ cmake-extras: - update to 1.9 * add support for CMake 4.0 - drop cmake-extras-1.8-cmake4.patch as it is part of the release ++++ docker: - Update to Docker 28.5.1-ce. See upstream changelog online at - Rebased patches: * 0001-SECRETS-SUSE-always-clear-our-internal-secrets.patch * 0002-SECRETS-daemon-allow-directory-creation-in-run-secre.patch * 0003-SECRETS-SUSE-implement-SUSE-container-secrets.patch * 0004-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch * 0005-bsc1073877-apparmor-clobber-docker-default-profile-o.patch * 0006-SLE12-revert-apparmor-remove-version-conditionals-fr.patch * cli-0001-openSUSE-point-users-to-docker-buildx-package.patch * cli-0002-SECRETS-SUSE-default-to-DOCKER_BUILDKIT-0-for-docker.patch - Remove upstreamed patch: - 0007-Add-back-vendor.sum.patch ++++ dtb-aarch64: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ dtb-aarch64: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ dtb-aarch64: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ v2ray-core: - Fix CVE-2025-47911 and boo#1251404 * Add fix-CVE-2025-47911.patch * Update golang.org/x/net to 0.45.0 in vendor ++++ kernel-source: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-source: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-source: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-docs: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-docs: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-docs: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-kvmsmall: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-kvmsmall: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-kvmsmall: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-build: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-build: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-build: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-qa: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-qa: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-obs-qa: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-syms: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-syms: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-syms: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-zfcpdump: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-zfcpdump: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ kernel-zfcpdump: - ext4: fix checks for orphan inodes (bsc#1250119). - commit c65de7e - smc: Fix lockdep false-positive for IPPROTO_SMC (git-fixes). - Refresh patches.suse/smc-Fix-various-oops-due-to-inet_sock-type-confusion.patch. - commit d87b439 - kABI: add back tx_stopped to kcm_sock struct (bsc#1249167 CVE-2025-38717). The upstream commit 52565a935213 ("net: kcm: Fix race condition in kcm_unattach()") removed the tx_stopped field from the kcm_sock structure. Bring it back to preserve kABI, even though it isn't used. - commit dfccc64 - net: kcm: Fix race condition in kcm_unattach() (CVE-2025-38717 bsc#1249167). - commit e60fdb9 - usb: misc: qcom_eud: Access EUD_MODE_MANAGER2 through secure calls (git-fixes). - commit edc8bfe - misc: fastrpc: Skip reference for DMA handles (git-fixes). - misc: fastrpc: fix possible map leak in fastrpc_put_args (git-fixes). - misc: fastrpc: Fix fastrpc_map_lookup operation (git-fixes). - misc: fastrpc: Save actual DMA size in fastrpc_map structure (git-fixes). - staging: axis-fifo: flush RX FIFO on read errors (git-fixes). - staging: axis-fifo: fix TX handling on copy_from_user() failure (git-fixes). - staging: axis-fifo: fix maximum TX packet length check (git-fixes). - ACPI: battery: Add synchronization between interface updates (git-fixes). - cpufreq: tegra186: Set target frequency for all cpus in policy (git-fixes). - cpufreq: mediatek: fix device leak on probe failure (git-fixes). - clk: at91: peripheral: fix return value (git-fixes). - clk: mediatek: clk-mux: Do not pass flags to clk_mux_determine_rate_flags() (git-fixes). - clk: mediatek: mt8195-infra_ao: Fix parent for infra_ao_hdmi_26m (git-fixes). - clk: qcom: tcsrcc-x1e80100: Set the bi_tcxo as parent to eDP refclk (git-fixes). - clk: qcom: common: Fix NULL vs IS_ERR() check in qcom_cc_icc_register() (git-fixes). - clk: renesas: cpg-mssr: Fix memory leak in cpg_mssr_reserved_init() (git-fixes). - clk: tegra: do not overallocate memory for bpmp clocks (git-fixes). - commit bba55ef ++++ maven-archiver: - Upgrade to maven-archiver 3.6.5 * New features and improvements + add Java-Version entry to default MANIFEST.MF * Bug Fixes + avoid negative entry time: upgrade plexus-archiver + don't limit outputTimestamp to zip (MS DOS) range * Documentation updates + remove extra newline in code blocks + reformat descriptor description to match usual Modello-generated ones + document Java-Version entry added in #298 * Maintenance + Update site descriptor to 2.0.0 * Dependency updates + Bump org.assertj:assertj-core from 3.27.3 to 3.27.6 + Bump org.codehaus.plexus:plexus-archiver from 4.10.0 to 4.10.1 ++++ nvidia-open-driver-G06-signed-cuda: - Check4WrongSupplements.sh * check for wrong Supplements in generated KMPs after build by misusing %post of a dummy "check" subpackage ++++ nvidia-open-driver-G06-signed-cuda: - Check4WrongSupplements.sh * check for wrong Supplements in generated KMPs after build by misusing %post of a dummy "check" subpackage ++++ nvidia-open-driver-G06-signed: - Check4WrongSupplements.sh * check for wrong Supplements in generated KMPs after build by misusing %post of a dummy "check" subpackage ++++ nvidia-open-driver-G06-signed: - Check4WrongSupplements.sh * check for wrong Supplements in generated KMPs after build by misusing %post of a dummy "check" subpackage ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ openQA: - Update to version 5.1759912962.689b31ed: * Avoid failing `obs_rsync_run` jobs when restarting `openqa-gru.service` ++++ suse-migration-services: - prechecks/lsm.py: remove _apparmor_analyze_profiles() Currently no known problematic AA profiles are known. Removing the verification code for now, as it adds no value. - LSM migration check for AppArmor -> SELinux Users will need to review detected changes manually. ------------------------------------------------------------------ ------------------ 2025-10-7 - Oct 7 2025 ------------------- ------------------------------------------------------------------ ++++ scanner-databases: - database refresh on 2025-10-07 (bsc#1084929) ++++ kernel-64kb: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-64kb: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-64kb: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-default: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-default: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-default: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-rt: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-rt: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ kernel-rt: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ dtb-aarch64: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ dtb-aarch64: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ dtb-aarch64: - ice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset (jsc#PED-13728). - commit 4569920 - idpf: set mac type when adding and removing MAC filters (jsc#PED-13728). - idpf: fix UAF in RDMA core aux dev deinitialization (jsc#PED-13728). - idpf: remove obsolete stashing code (jsc#PED-13728). - idpf: stop Tx if there are insufficient buffer resources (jsc#PED-13728). - idpf: replace flow scheduling buffer ring with buffer pool (jsc#PED-13728). - idpf: simplify and fix splitq Tx packet rollback error path (jsc#PED-13728). - idpf: improve when to set RE bit logic (jsc#PED-13728). - idpf: add support for Tx refillqs in flow scheduling mode (jsc#PED-13728). - idpf: preserve coalescing settings across resets (jsc#PED-13728). - idpf: add cross timestamping (jsc#PED-13728). - idpf: add flow steering support (jsc#PED-13728). - virtchnl2: add flow steering support (jsc#PED-13728). - virtchnl2: rename enum virtchnl2_cap_rss (jsc#PED-13728). - idpf: implement get LAN MMIO memory regions (jsc#PED-13728 jsc#PED-13762). - idpf: implement IDC vport aux driver MTU change handler (jsc#PED-13728 jsc#PED-13762). - idpf: implement remaining IDC RDMA core callbacks and handlers (jsc#PED-13728 jsc#PED-13762). - idpf: implement RDMA vport auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: implement core RDMA auxiliary dev create, init, and destroy (jsc#PED-13728 jsc#PED-13762). - idpf: use reserved RDMA vectors from control plane (jsc#PED-13728 jsc#PED-13762). - idpf: add support for Rx timestamping (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp flows (jsc#PED-13728 jsc#PED-13762). - idpf: add Tx timestamp capabilities negotiation (jsc#PED-13728 jsc#PED-13762). - idpf: add PTP clock configuration (jsc#PED-13728 jsc#PED-13762). - idpf: add mailbox access to read PTP clock time (jsc#PED-13728 jsc#PED-13762). - idpf: negotiate PTP capabilities and get PTP clock (jsc#PED-13728 jsc#PED-13762). - idpf: move virtchnl structures to the header file (jsc#PED-13728 jsc#PED-13762). - virtchnl: add PTP virtchnl definitions (jsc#PED-13728 jsc#PED-13762). - idpf: add initial PTP support (jsc#PED-13728 jsc#PED-13762). - idpf: change the method for mailbox workqueue allocation (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Update IDC to support multiple consumers (jsc#PED-13728 jsc#PED-13762). - ice: Replace ice specific DSCP mapping num with a kernel define (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Break iidc.h into two headers (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename to iidc_* convention (jsc#PED-13728 jsc#PED-13762). - iidc/ice/irdma: Rename IDC header file (jsc#PED-13728 jsc#PED-13762). - idpf: remove unreachable code from setting mailbox (jsc#PED-13728 jsc#PED-13762). - idpf: assign extracted ptype to struct libeth_rqe_info field (jsc#PED-13728 jsc#PED-13762). - libeth: move idpf_rx_csum_decoded and idpf_rx_extracted (jsc#PED-13728 jsc#PED-13762). - resource: Add resource set range and size helpers (jsc#PED-13728 jsc#PED-13762). - commit 7610740 - smb: client: fix crypto buffers in non-linear memory (bsc#1250491, boo#1239206). - commit 95451c8 - tcp_bpf: Fix copied value in tcp_bpf_sendmsg (bsc#1250650). - commit 458b7be - Revert "usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running" (git-fixes). - commit 888e234 - kABI workaround for struct atmdev_ops extension (CVE-2025-39828 bsc#1250205). - commit e17abcd - atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control() (CVE-2025-39828 bsc#1250205). - commit a33e596 - nfsd: fix access checking for NLM under XPRTSEC policies (git-fixes). - commit 373e2d2 - nfsd: Fix NFSD_MAY_BYPASS_GSS and NFSD_MAY_BYPASS_GSS_ON_ROOT (git-fixes). - commit 8f7d330 - NFSD: Fix destination buffer size in nfsd4_ssc_setup_dul() (git-fixes). - commit f2f0b4c - sunrpc: fix null pointer dereference on zero-length checksum (git-fixes). - commit 77680ce - kABI fix for net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime (CVE-2025-38470 bsc#1247288). - commit 872debf - genetlink: fix genl_bind() invoking bind() after -EPERM (CVE-2025-39926 bsc#1250737). - e1000e: fix heap overflow in e1000_set_eeprom (CVE-2025-39898 bsc#1250742). - vxlan: Fix NPD when refreshing an FDB entry with a nexthop object (CVE-2025-39851 bsc#1250296). - commit b1c6264 - ACPI: NFIT: Fix incorrect ndr_desc being reportedin dev_err message (git-fixes). - watchdog: mpc8xxx_wdt: Reload the watchdog timer when enabling the watchdog (git-fixes). - PCI/ACPI: Fix pci_acpi_preserve_config() memory leak (git-fixes). - PCI: xilinx-nwl: Fix ECAM programming (git-fixes). - PCI: tegra: Convert struct tegra_msi mask_lock into raw spinlock (git-fixes). - PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes). - PCI: tegra: Fix devm_kcalloc() argument order for port->phys allocation (git-fixes). - PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes). - PCI: rcar-host: Drop PMSR spinlock (git-fixes). - PCI: rcar-gen4: Fix inverted break condition in PHY initialization (git-fixes). - PCI: rcar-gen4: Assure reset occurs before DBI access (git-fixes). - PCI: rcar-gen4: Add missing 1ms delay after PWR reset assertion (git-fixes). - PCI: rcar-gen4: Fix PHY initialization (git-fixes). - PCI: keystone: Use devm_request_irq() to free "ks-pcie-error-irq" on exit (git-fixes). - PCI: j721e: Fix incorrect error message in probe() (git-fixes). - PCI: j721e: Fix programming sequence of "strap" settings (git-fixes). - PCI: tegra194: Handle errors in BPMP response (git-fixes). - PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). - PCI: tegra194: Fix broken tegra_pcie_ep_raise_msi_irq() (git-fixes). - PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV (git-fixes). - PCI/pwrctrl: Fix device leak at registration (git-fixes). - PCI/sysfs: Ensure devices are powered for config reads (git-fixes). - PCI/AER: Fix missing uevent on recovery when a reset is requested (git-fixes). - PCI/ERR: Fix uevent on failure to recover (git-fixes). - dmaengine: Fix dma_async_tx_descriptor->tx_submit documentation (git-fixes). - phy: rockchip: naneng-combphy: Enable U3 OTG port for RK3568 (git-fixes). - media: rc: fix races with imon_disconnect() (git-fixes). - commit 89c34cb - arm64: dts: apple: Add ethernet0 alias for J375 template (git-fixes) - commit bf06513 - arm64: dts: apple: t8103-j457: Fix PCIe ethernet iommu-map (git-fixes) - commit d06126a - arm64: dts: imx95: Correct the lpuart7 and lpuart8 srcid (git-fixes) - commit d730190 - arm64: dts: imx93-kontron: Fix USB port assignment (git-fixes) - commit 986b7b9 - arm64: dts: imx93-kontron: Fix GPIO for panel regulator (git-fixes) - commit 2c413ce - bpf, arm64: Call bpf_jit_binary_pack_finalize() in bpf_jit_free() (git-fixes) - commit e47726c - arm64: map [_text, _stext) virtual address range (git-fixes) - commit 10168ba - arm64: dts: imx8mp: Correct thermal sensor index (git-fixes) - commit 7d86bf9 - arm64: dts: marvell: cn9132-clearfog: fix multi-lane pci x2 and x4 (git-fixes) - commit da906fa - arm64: dts: marvell: cn9132-clearfog: disable eMMC high-speed modes (git-fixes) - commit 8fbea30 - Refresh new ".init.text.ftrace_trampoline" kABI fix. First version made modules build before patch [1] fail to load. [1] a7ed7b9d0ebb0 "arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE" - commit 6910b1a ++++ gimp: - switch from pkgconfig(appstream-glib) to pkgconfig(appstream) - Update to 3.0.6 - Security: - During development, we received reports from the Zero Day Initiative of potential security issues with some of our file import plug-ins. While these issues are very unlikely to occur with real files, developers like Jacob Boerema and Alx Sa proactively improved security for those imports. The resolved reports are: - ZDI-CAN-27793 - ZDI-CAN-27823 - ZDI-CAN-27836 - ZDI-CAN-27878 - ZDI-CAN-27684 - fix dicom plug-in: Adds more safety checks and sets actual GError's instead of just calling gimp_quit. Fix GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10922, ZDI-CAN-27863, bsc#1250497) - Core: - Many false-positive build warnings have been cleaned out (and proper issues fixed). - Various crashes fixed. - When creating a layer mask from the layer's alpha, but the layer has no alpha, simply fill the mask with complete opacity instead of a completely transparent layer. - Various core infrastructure code reviewed, cleaned up, refactored and improved, in drawable, layer and filter handling code, tree view code, and more. - GIMP_ICONS_LIKE_A_BOSS environment variable is not working anymore (because "gtk-menu-images" and "gtk-button-images" have been deprecated in GTK3 and removed in GTK4) and was therefore removed. - Lock Content now shows as an undo step. - Add alpha channel for certain transforms. - Add alpha channel on filter merge, when necessary. - Filters can now be applied non-destructively on channels. - Improved Photoshop brush support. - After deleting a palette entry, the next entry is automatically selected. This allows easily deleting several entries in a row, among other usage. - Resize image to layers irrespective to selections. - Improved in-GUI release notes' demo script language: - We can now set a button value to click it: "toolbox:text, tool-options:outline=1, tool-options:outline-direction" - Color selector's module names can be used as identifiers: "color-editor,color-editor:CMYK=1,color-editor:total-ink-coverage" - Fixed Alpha to Selection on single layers with no transparency. - Various code is slowly ported to newer code, preparing for GTK4 port (in an unplanned future step): - Using g_set_str() (optionally redefining it in our core code to avoid bumping the GLib minimum requirement). - Start using GListModel in various pieces of code, in particular getting rid of more and more usage of GtkTreeView when possible (as it will be deprecated with GTK4). - New GimpRow class for all future row widgets. - Use more of G_DECLARE_DERIVABLE_TYPE and G_DECLARE_FINAL_TYPE where relevant. - New GimpContainerListView using a GtkListBox. - New GimpRowSeparator, GimpRowSettings, GimpRowFilter and GimpRowDrawableFilter widgets. - (Experimental) GEX Format was updated. - Palette import: - Set alpha value for image palette imports. - Fix Lab & CMYK ACB palette import. - Add palette format filters to import dialog, making it more apparent what palette formats are supported, and giving the ability to hide irrelevant files. - Improved filter actions' sensitivity to make sure they are set insensitive when relevant. In particular filters which cannot be run non-destructively (e.g. filters with aux inputs, non-interactive filters and GEGL Graph) must be insensitive when trying to run them on group layers. - Fix bad axis centering on zoom out. - Export better SVG when exporting paths. - Tools: - Text tool: make sure the default color is only changed when the user confirms the color change. - Foreground Selection tool: do not create a selection when no strokes has been made. In particular this removes the unnecessary delay which happened when switching to another tool without actually stroking anything. - All Transform tools: transform boundaries for preview is now multi-layers aware. - (Experimental) Seamless Clone tool: made to work again, though it is still too slow to get out of Playground. - Graphical User Interface: - Various improvements to window management: - Keep-Above windows are set with the Utility hint. - Utility windows are not made transient to a parent. - Transient factory dialogs follow the active display, ensuring that new image windows would not hide your toolbox and dock windows. - Various CSS improvements for styling of the interface. Some theme leaks were also fixed. - New toggle button in Brushes and Fonts dockable, allowing brush and font previews to optionally follow the color theme. For instance, when using a dark theme, the brush and font previews could be drawn on the theme background, using the theme foreground colors. By default, these data previews are still drawn as black on white. - Palette grid is now drawn with the theme's background color. - Consistent naming patterns on human-facing options (first word only capitalized). - About dialog: - We will now display the date and time of the last check in a "Up to date as of at