kernel-5.14.0-253.el9
* Wed Feb 01 2023 Herton R. Krzesinski <herton@redhat.com> [5.14.0-253.el9]
- crypto: testmgr - disallow certain DRBG hash functions in FIPS mode (Vladis Dronov) [2152131]
- rtla: Fix exit status when returning from calls to usage() (John Kacur) [2160394]
- nfsd: don't free files unconditionally in __nfsd_file_cache_purge (Jeffrey Layton) [2160443]
- ice: use GNSS subsystem instead of TTY (Petr Oros) [2111048]
- ice: Add check for kzalloc (Petr Oros) [2111048]
- ice: Fix potential memory leak in ice_gnss_tty_write() (Petr Oros) [2111048]
- ice: add write functionality for GNSS TTY (Petr Oros) [2111048]
- net/ulp: use consistent error code when blocking ULP (Paolo Abeni) [2162758]
- net/ulp: prevent ULP without clone op from entering the LISTEN status (Paolo Abeni) [2162758]
- ipvlan: hold lower dev to avoid possible use-after-free (Davide Caratti) [2162698]
- net: macvlan: Use built-in RCU list checking (Davide Caratti) [2162698]
- net: macvlan: fix memory leaks of macvlan_common_newlink (Davide Caratti) [2162698]
- dmaengine: Fix double increment of client_count in dma_chan_get() (Joel Savitz) [2095651]
- ice: Fix configuring VIRTCHNL_OP_CONFIG_VSI_QUEUES with unbalanced queues (Petr Oros) [2162402]
- ice: virtchnl rss hena support (Petr Oros) [2162402]
- ice: Add additional CSR registers to ETHTOOL_GREGS (Petr Oros) [2162402]
- ice: Add support Flex RXD (Petr Oros) [2162402]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2162440]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2162440]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2162440]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2162440]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2162440]
- l2tp: prevent lockdep issue in l2tp_tunnel_register() (Guillaume Nault) [2162322]
- l2tp: close all race conditions in l2tp_tunnel_register() (Guillaume Nault) [2162322]
- l2tp: convert l2tp_tunnel_list to idr (Guillaume Nault) [2162322]
- ipv6: raw: Deduct extension header length in rawv6_push_pending_frames (Hangbin Liu) [2162122] {CVE-2023-0394}
- ipv4: Fix incorrect route flushing when table ID 0 is used (Guillaume Nault) [2162116]
- ipv4: Fix incorrect route flushing when source address is deleted (Guillaume Nault) [2162116]
- inet: ping: use hlist_nulls rcu iterator during lookup (Guillaume Nault) [2162116]
- ipv4: Fix route deletion when nexthop info is not specified (Guillaume Nault) [2162116]
- ipv4: Fix error return code in fib_table_insert() (Guillaume Nault) [2162116]
- net: use struct_group to copy ip/ipv6 header addresses (Guillaume Nault) [2162116]
- netfilter: rpfilter/fib: Set ->flowic_uid correctly for user namespaces. (Guillaume Nault) [2162116]
- iwlwifi: remove firmware version limit for AC9560 (Íñigo Huguet) [2129363]
- wifi: iwlwifi: fw: skip PPAG for JF (Íñigo Huguet) [2129363]
- mptcp: fix lockdep false positive (Davide Caratti) [2161699]
- mptcp: fix deadlock in fastopen error path (Davide Caratti) [2161699]
- mptcp: fix sleep in atomic at close time (Davide Caratti) [2161699]
- mptcp: don't orphan ssk in mptcp_close() (Davide Caratti) [2161699]
- mptcp: use proper req destructor for IPv6 (Davide Caratti) [2161699]
- mptcp: dedicated request sock for subflow in v6 (Davide Caratti) [2161699]
- mptcp: remove MPTCP 'ifdef' in TCP SYN cookies (Davide Caratti) [2161699]
- mptcp: netlink: fix some error return code (Davide Caratti) [2161699]
- ACPICA: Fix operand resolution (Mark Langsdorf) [2159836]
- net: mana: Fix race on per-CQ variable napi work_done (Emanuele Giuseppe Esposito) [2153431]
Resolves: rhbz#2152131, rhbz#2160394, rhbz#2160443, rhbz#2111048, rhbz#2162758, rhbz#2162698, rhbz#2095651, rhbz#2162402, rhbz#2162440, rhbz#2162322, rhbz#2162122, rhbz#2162116, rhbz#2129363, rhbz#2161699, rhbz#2159836, rhbz#2153431
Signed-off-by: Herton R. Krzesinski <herton@redhat.com>