diff --git a/SOURCE b/SOURCE index 78fcca7369f5f7fbbc794ad3ae2d20fdf8a27f22..8eff29b22ec2c37cd3f7655e2c5916702a0c4308 100644 --- a/SOURCE +++ b/SOURCE @@ -1 +1 @@ -5.10.0-153.45.0 +5.10.0-153.46.0 diff --git a/kernel.spec b/kernel.spec index 3c7354dcf378665cea93ec4736a7434bf970d80f..6021c4c585f8b0fde9a5b2e4e92cc34daa1a6f33 100644 --- a/kernel.spec +++ b/kernel.spec @@ -11,8 +11,8 @@ %global upstream_version 5.10 %global upstream_sublevel 0 %global devel_release 153 -%global maintenance_release .45.0 -%global pkg_release .123 +%global maintenance_release .46.0 +%global pkg_release .124 %define with_debuginfo 1 # Do not recompute the build-id of vmlinux in find-debuginfo.sh @@ -878,6 +878,60 @@ fi %endif %changelog +* Wed Mar 13 2024 Jialin Zhang - 5.10.0-153.46.0.124 +- !5155 [sync] PR-4645: f2fs: explicitly null-terminate the xattr list +- !5148 [sync] PR-4925: v2 btrfs: do not ASSERT() if the newly created subvolume already got read +- !4669 [sync] PR-4646: binder: fix use-after-free in shinker's callback +- !4832 [sync] PR-4803: CVE-2024-26583 +- f2fs: explicitly null-terminate the xattr list +- !4750 [sync] PR-4672: uio: Fix use-after-free in uio_open +- !5070 [sync] PR-5033: v3 Remove WQ_FLAG_BOOKMARK flag +- btrfs: fix double free of anonymous device after snapshot creation failure +- btrfs: do not ASSERT() if the newly created subvolume already got read +- !5116 [sync] PR-5058: net: fix possible store tearing in neigh_periodic_work() +- !5087 [sync] PR-5064: net: rds: Fix possible NULL-pointer dereference +- !5127 [sync] PR-4891: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security +- !5081 [sync] PR-5051: dm: limit the number of targets and parameter size area +- !5002 [sync] PR-4988: ieee802154: ca8210: Fix a potential UAF in ca8210_probe +- Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security +- !5109 CVE-2024-26586 +- net: fix possible store tearing in neigh_periodic_work() +- mlxsw: spectrum_acl_tcam: Fix stack corruption +- mlxsw: spectrum_acl_tcam: Reorder functions to avoid forward declarations +- mlxsw: spectrum_acl_tcam: Make fini symmetric to init +- mlxsw: spectrum_acl_tcam: Add missing mutex_destroy() +- mlxsw: spectrum: Use 'bitmap_zalloc()' when applicable +- mlxsw: spectrum_acl_erp: Fix error flow of pool allocation failure +- !4840 [sync] PR-4742: block: add check that partition length needs to be aligned with block size +- !5067 [sync] PR-5032: net/sched: act_ct: fix wild memory access when clearing fragments +- net: rds: Fix possible NULL-pointer dereference +- dm: limit the number of targets and parameter size area +- sched: remove wait bookmarks +- filemap: remove use of wait bookmarks +- net/sched: act_ct: fix wild memory access when clearing fragments +- !4986 [sync] PR-4339: 修复pmem_legacy_device未被编译问题 +- !4965 [sync] PR-4901: fix CVE-2021-47036 +- !5013 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() +- !5007 [sync] PR-4979: CVE-2021-47028 +- !5016 [sync] PR-4991: CVE-2023-52568 +- x86/sgx: Resolves SECS reclaim vs. page fault for EAUG race +- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() +- mt76: mt7915: fix txrate reporting +- mt76: mt7915: rename mt7915_mcu_get_rate_info to mt7915_mcu_get_tx_rate +- !4733 [sync] PR-4706: mtd: Fix gluebi NULL pointer dereference caused by ftl notifier +- ieee802154: ca8210: Fix a potential UAF in ca8210_probe +- pmem: compile pmem legacy device while libnvdimm as a module +- udp: properly flush normal packet at GRO time +- udp: skip L4 aggregation for UDP tunnel packets +- block: add check that partition length needs to be aligned with block size +- tls: fix race between tx work scheduling and socket close +- tls: fix race between async notify and socket close +- net: tls: factor out tls_*crypt_async_wait() +- tls: rx: simplify async wait +- uio: Fix use-after-free in uio_open +- mtd: Fix gluebi NULL pointer dereference caused by ftl notifier +- binder: fix use-after-free in shinker's callback + * Wed Mar 06 2024 Jialin Zhang - 5.10.0-153.45.0.123 - !4957 [sync] PR-4868: net: openvswitch: limit the number of recursions from action sets - !4962 [sync] PR-4940: apparmor: avoid crash when parsed profile name is empty