[4.19,029/338] NFSD: prevent integer overflow on 32 bit systems

From: Dan Carpenter <dan.carpenter@oracle.com>

From: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To: linux-kernel@vger.kernel.org
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Dan Carpenter <dan.carpenter@oracle.com>,
        Chuck Lever <chuck.lever@oracle.com>
Subject: [PATCH 4.19 029/338] NFSD: prevent integer overflow on 32 bit systems
Date: Thu, 14 Apr 2022 15:08:52 +0200
Message-Id: <20220414110839.720507036@linuxfoundation.org>
In-Reply-To: <20220414110838.883074566@linuxfoundation.org>
References: <20220414110838.883074566@linuxfoundation.org>
User-Agent: quilt/0.66
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Precedence: bulk

Message ID	20220414110839.720507036@linuxfoundation.org
State	New
Headers	show Return-Path: <stable-owner@kernel.org> From: Greg Kroah-Hartman <gregkh@linuxfoundation.org> To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>, stable@vger.kernel.org, Dan Carpenter <dan.carpenter@oracle.com>, Chuck Lever <chuck.lever@oracle.com> Subject: [PATCH 4.19 029/338] NFSD: prevent integer overflow on 32 bit systems Date: Thu, 14 Apr 2022 15:08:52 +0200 Message-Id: <20220414110839.720507036@linuxfoundation.org> In-Reply-To: <20220414110838.883074566@linuxfoundation.org> References: <20220414110838.883074566@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	None \| expand [4.19,002/338] USB: serial: simple: add Nokia phone driver [4.19,003/338] hv: utils: add PTP_1588_CLOCK to Kconfig to fix build [4.19,004/338] netdevice: add the case if dev is NULL [4.19,005/338] xfrm: fix tunnel model fragmentation behavior [4.19,006/338] virtio_console: break out of buf poll on remove [4.19,007/338] ethernet: sun: Free the coherent when failing in probing [4.19,008/338] spi: Fix invalid sgs value [4.19,009/338] net:mcf8390: Use platform_get_irq() to get the interrupt [4.19,010/338] spi: Fix erroneous sgs value with min_t() [4.19,011/338] af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register [4.19,012/338] fuse: fix pipe buffer lifetime for direct_io [4.19,013/338] tpm: fix reference counting for struct tpm_chip [4.19,014/338] block: Add a helper to validate the block size [4.19,015/338] virtio-blk: Use blk_validate_block_size() to validate block size [4.19,016/338] USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c [4.19,017/338] xhci: make xhci_handshake timeout for xhci_reset() adjustable [4.19,018/338] coresight: Fix TRCCONFIGR.QE sysfs interface [4.19,019/338] iio: afe: rescale: use s64 for temporary scale calculations [4.19,020/338] iio: inkern: apply consumer scale on IIO_VAL_INT cases [4.19,021/338] iio: inkern: apply consumer scale when no channel scale is available [4.19,022/338] iio: inkern: make a best effort on offset calculation [4.19,023/338] clk: uniphier: Fix fixed-rate initialization [4.19,024/338] ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE [4.19,025/338] Documentation: add link to stable release candidate tree [4.19,026/338] Documentation: update stable tree link [4.19,027/338] SUNRPC: avoid race between mod_timer() and del_timer_sync() [4.19,028/338] NFSD: prevent underflow in nfssvc_decode_writeargs() [4.19,029/338] NFSD: prevent integer overflow on 32 bit systems [4.19,030/338] f2fs: fix to unlock page correctly in error path of is_alive() [4.19,031/338] pinctrl: samsung: drop pin banks references on error paths [4.19,032/338] can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path [4.19,033/338] jffs2: fix use-after-free in jffs2_clear_xattr_subsystem [4.19,034/338] jffs2: fix memory leak in jffs2_do_mount_fs [4.19,035/338] jffs2: fix memory leak in jffs2_scan_medium [4.19,036/338] mm/pages_alloc.c: dont create ZONE_MOVABLE beyond the end of a node [4.19,037/338] mm: invalidate hwpoison page cache page in fault path [4.19,038/338] mempolicy: mbind_range() set_policy() after vma_merge() [4.19,039/338] scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands [4.19,040/338] qed: display VF trust config [4.19,041/338] qed: validate and restrict untrusted VFs vlan promisc mode [4.19,042/338] Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads" [4.19,043/338] ALSA: cs4236: fix an incorrect NULL check on list iterator [4.19,044/338] ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 [4.19,045/338] mm,hwpoison: unmap poisoned page before invalidation [4.19,046/338] drbd: fix potential silent data corruption [4.19,047/338] powerpc/kvm: Fix kvm_use_magic_page [4.19,048/338] ACPI: properties: Consistently return -ENOENT if there are no more references [4.19,049/338] drivers: hamradio: 6pack: fix UAF bug caused by mod_timer() [4.19,050/338] block: dont merge across cgroup boundaries if blkcg is enabled [4.19,051/338] drm/edid: check basic audio support on CEA extension block [4.19,052/338] video: fbdev: sm712fb: Fix crash in smtcfb_read() [4.19,053/338] video: fbdev: atari: Atari 2 bpp (STe) palette bugfix [4.19,054/338] ARM: dts: at91: sama5d2: Fix PMERRLOC resource size [4.19,055/338] ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 [4.19,056/338] ARM: dts: exynos: add missing HDMI supplies on SMDK5250 [4.19,057/338] ARM: dts: exynos: add missing HDMI supplies on SMDK5420 [4.19,058/338] carl9170: fix missing bit-wise or operator for tx_params [4.19,059/338] thermal: int340x: Increase bitmap size [4.19,060/338] lib/raid6/test: fix multiple definition linking error [4.19,061/338] DEC: Limit PMAX memory probing to R3k systems [4.19,062/338] media: davinci: vpif: fix unbalanced runtime PM get [4.19,063/338] brcmfmac: firmware: Allocate space for default boardrev in nvram [4.19,064/338] brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio [4.19,065/338] PCI: pciehp: Clear cmd_busy bit in polling mode [4.19,066/338] regulator: qcom_smd: fix for_each_child.cocci warnings [4.19,067/338] crypto: authenc - Fix sleep in atomic context in decrypt_tail [4.19,068/338] crypto: mxs-dcp - Fix scatterlist processing [4.19,069/338] spi: tegra114: Add missing IRQ check in tegra_spi_probe [4.19,070/338] selftests/x86: Add validity check and allow field splitting [4.19,071/338] spi: pxa2xx-pci: Balance reference count for PCI DMA device [4.19,072/338] hwmon: (pmbus) Add mutex to regulator ops [4.19,073/338] hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING [4.19,074/338] block: dont delete queue kobject before its children [4.19,075/338] PM: hibernate: fix __setup handler error handling [4.19,076/338] PM: suspend: fix return value of __setup handler [4.19,077/338] hwrng: atmel - disable trng on failure path [4.19,078/338] crypto: vmx - add missing dependencies [4.19,079/338] clocksource/drivers/timer-of: Check return value of of_iomap in timer_of_base_init() [4.19,080/338] ACPI: APEI: fix return value of __setup handlers [4.19,081/338] crypto: ccp - ccp_dmaengine_unregister release dma channels [4.19,082/338] hwmon: (pmbus) Add Vin unit off handling [4.19,083/338] clocksource: acpi_pm: fix return value of __setup handler [4.19,084/338] sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa [4.19,085/338] perf/core: Fix address filter parser for multiple filters [4.19,086/338] perf/x86/intel/pt: Fix address filter config for 32-bit kernel [4.19,087/338] media: coda: Fix missing put_device() call in coda_get_vdoa_data [4.19,088/338] video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() [4.19,089/338] video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() [4.19,090/338] ARM: dts: qcom: ipq4019: fix sleep clock [4.19,091/338] soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe [4.19,092/338] media: em28xx: initialize refcount before kref_get [4.19,093/338] media: usb: go7007: s2250-board: fix leak in probe() [4.19,094/338] ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp() [4.19,095/338] ASoC: ti: davinci-i2s: Add check for clk_enable() [4.19,096/338] ALSA: spi: Add check for clk_enable() [4.19,097/338] arm64: dts: ns2: Fix spi-cpol and spi-cpha property [4.19,098/338] arm64: dts: broadcom: Fix sata nodename [4.19,099/338] printk: fix return value of printk.devkmsg __setup handler [4.19,100/338] ASoC: mxs-saif: Handle errors for clk_enable [4.19,101/338] ASoC: atmel_ssc_dai: Handle errors for clk_enable [4.19,102/338] memory: emif: Add check for setup_interrupts [4.19,103/338] memory: emif: check the pointer temp in get_device_details() [4.19,104/338] ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction [4.19,105/338] media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED [4.19,106/338] ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe [4.19,107/338] ASoC: wm8350: Handle error for wm8350_register_irq [4.19,108/338] ASoC: fsi: Add check for clk_enable [4.19,109/338] video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of [4.19,110/338] ASoC: dmaengine: do not use a NULL prepare_slave_config() callback [4.19,111/338] ASoC: mxs: Fix error handling in mxs_sgtl5000_probe [4.19,112/338] ASoC: imx-es8328: Fix error return code in imx_es8328_probe() [4.19,113/338] ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digi... [4.19,114/338] mmc: davinci_mmc: Handle error for clk_enable [4.19,115/338] drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev [4.19,116/338] ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern [4.19,117/338] Bluetooth: hci_serdev: call init_rwsem() before p->open() [4.19,118/338] mtd: onenand: Check for error irq [4.19,119/338] drm/edid: Dont clear formats if using deep color [4.19,120/338] drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_... [4.19,121/338] ath9k_htc: fix uninit value bugs [4.19,122/338] KVM: PPC: Fix vmx/vsx mixup in mmio emulation [4.19,123/338] power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe [4.19,124/338] ray_cs: Check ioremap return value [4.19,125/338] power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init [4.19,126/338] HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports [4.19,127/338] iwlwifi: Fix -EIO error code that is never returned [4.19,128/338] dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS [4.19,129/338] scsi: pm8001: Fix command initialization in pm80XX_send_read_log() [4.19,130/338] scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() [4.19,131/338] scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() [4.19,132/338] scsi: pm8001: Fix abort all task initialization [4.19,133/338] TOMOYO: fix __setup handlers return values [4.19,134/338] ext2: correct max file size computing [4.19,135/338] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe [4.19,136/338] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return [4.19,137/338] drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt [4.19,138/338] powerpc/Makefile: Dont pass -mcpu=powerpc64 when building 32-bit [4.19,139/338] KVM: x86: Fix emulation in writing cr8 [4.19,140/338] KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() [4.19,141/338] hv_balloon: rate-limit "Unhandled message" warning [4.19,142/338] i2c: xiic: Make bus names unique [4.19,143/338] power: supply: wm8350-power: Handle error for wm8350_register_irq [4.19,144/338] power: supply: wm8350-power: Add missing free in free_charger_irq [4.19,145/338] PCI: Reduce warnings on possible RW1C corruption [4.19,146/338] powerpc/sysdev: fix incorrect use to determine if list is empty [4.19,147/338] mfd: mc13xxx: Add check for mc13xxx_irq_request [4.19,148/338] vxcan: enable local echo for sent CAN frames [4.19,149/338] MIPS: RB532: fix return value of __setup handler [4.19,150/338] mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init [4.19,151/338] USB: storage: ums-realtek: fix error code in rts51x_read_mem() [4.19,152/338] af_netlink: Fix shift out of bounds in group mask calculation [4.19,153/338] i2c: mux: demux-pinctrl: do not deactivate a master that is not active [4.19,154/338] selftests/bpf/test_lirc_mode2.sh: Exit with proper code [4.19,155/338] net: bcmgenet: Use stronger register read/writes to assure ordering [4.19,156/338] tcp: ensure PMTU updates are processed during fastopen [4.19,157/338] mfd: asic3: Add missing iounmap() on error asic3_mfd_probe [4.19,158/338] mxser: fix xmit_buf leak in activate when LSR == 0xff [4.19,159/338] pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() [4.19,160/338] staging:iio:adc:ad7280a: Fix handing of device address bit reversing. [4.19,161/338] clk: qcom: ipq8074: Use floor ops for SDCC1 clock [4.19,162/338] serial: 8250_mid: Balance reference count for PCI DMA device [4.19,163/338] serial: 8250: Fix race condition in RTS-after-send handling [4.19,164/338] iio: adc: Add check for devm_request_threaded_irq [4.19,165/338] dma-debug: fix return value of __setup handlers [4.19,166/338] clk: qcom: clk-rcg2: Update the frac table for pixel clock [4.19,167/338] remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region [4.19,168/338] clk: actions: Terminate clk_div_table with sentinel element [4.19,169/338] clk: loongson1: Terminate clk_div_table with sentinel element [4.19,170/338] clk: clps711x: Terminate clk_div_table with sentinel element [4.19,171/338] clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver [4.19,172/338] NFS: remove unneeded check in decode_devicenotify_args() [4.19,173/338] pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init [4.19,174/338] pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe [4.19,175/338] pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe [4.19,176/338] tty: hvc: fix return value of __setup handler [4.19,177/338] kgdboc: fix return value of __setup handler [4.19,178/338] kgdbts: fix return value of __setup handler [4.19,179/338] jfs: fix divide error in dbNextAG [4.19,180/338] netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options [4.19,181/338] clk: qcom: gcc-msm8994: Fix gpll4 width [4.19,182/338] xen: fix is_xen_pmu() [4.19,183/338] net: phy: broadcom: Fix brcm_fet_config_init() [4.19,184/338] qlcnic: dcb: default to returning -EOPNOTSUPP [4.19,185/338] net/x25: Fix null-ptr-deref caused by x25_disconnect [4.19,186/338] NFSv4/pNFS: Fix another issue with a list iterator pointing to the head [4.19,187/338] lib/test: use after free in register_test_dev_kmod() [4.19,188/338] selinux: use correct type for context length [4.19,189/338] loop: use sysfs_emit() in the sysfs xxx show() [4.19,190/338] Fix incorrect type in assignment of ipv6 port for audit [4.19,191/338] irqchip/qcom-pdc: Fix broken locking [4.19,192/338] irqchip/nvic: Release nvic_base upon failure [4.19,193/338] bfq: fix use-after-free in bfq_dispatch_request [4.19,194/338] ACPICA: Avoid walking the ACPI Namespace if it is not there [4.19,195/338] lib/raid6/test/Makefile: Use $(pound) instead of \# for Make 4.3 [4.19,196/338] Revert "Revert "block, bfq: honor already-setup queue merges"" [4.19,197/338] ACPI/APEI: Limit printable size of BERT table data [4.19,198/338] PM: core: keep irq flags in device_pm_check_callbacks() [4.19,199/338] spi: tegra20: Use of_device_get_match_data() [4.19,200/338] ext4: dont BUG if someone dirty pages without asking ext4 first [4.19,201/338] ntfs: add sanity check on allocation size [4.19,202/338] video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow [4.19,203/338] video: fbdev: w100fb: Reset global state [4.19,204/338] video: fbdev: cirrusfb: check pixclock to avoid divide by zero [4.19,205/338] video: fbdev: omapfb: acx565akm: replace snprintf with sysfs_emit [4.19,206/338] ARM: dts: qcom: fix gic_irq_domain_translate warnings for msm8960 [4.19,207/338] ARM: dts: bcm2837: Add the missing L1/L2 cache information [4.19,208/338] ARM: ftrace: avoid redundant loads or clobbering IP [4.19,209/338] video: fbdev: omapfb: panel-dsi-cm: Use sysfs_emit() instead of snprintf() [4.19,210/338] video: fbdev: omapfb: panel-tpo-td043mtea1: Use sysfs_emit() instead of snprintf() [4.19,211/338] video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit [4.19,212/338] ASoC: soc-core: skip zero num_dai component in searching dai name [4.19,213/338] media: cx88-mpeg: clear interrupt status register before streaming video [4.19,214/338] ARM: tegra: tamonten: Fix I2C3 pad setting [4.19,215/338] ARM: mmp: Fix failure to remove sram device [4.19,216/338] video: fbdev: sm712fb: Fix crash in smtcfb_write() [4.19,217/338] media: Revert "media: em28xx: add missing em28xx_close_extension" [4.19,218/338] media: hdpvr: initialize dev->worker at hdpvr_register_videodev [4.19,219/338] mmc: host: Return an error when ->enable_sdio_irq() ops is missing [4.19,220/338] powerpc/lib/sstep: Fix sthcx instruction [4.19,221/338] powerpc/lib/sstep: Fix build errors with newer binutils [4.19,222/338] powerpc: Fix build errors with newer binutils [4.19,223/338] scsi: qla2xxx: Fix stuck session in gpdb [4.19,224/338] scsi: qla2xxx: Fix warning for missing error code [4.19,225/338] scsi: qla2xxx: Check for firmware dump already collected [4.19,226/338] scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() [4.19,227/338] scsi: qla2xxx: Fix incorrect reporting of task management failure [4.19,228/338] scsi: qla2xxx: Fix hang due to session stuck [4.19,229/338] scsi: qla2xxx: Reduce false trigger to login [4.19,230/338] scsi: qla2xxx: Use correct feature type field during RFF_ID processing [4.19,231/338] KVM: Prevent module exit until all VMs are freed [4.19,232/338] KVM: x86: fix sending PV IPI [4.19,233/338] ubifs: rename_whiteout: Fix double free for whiteout_ui->data [4.19,234/338] ubifs: Fix deadlock in concurrent rename whiteout and inode writeback [4.19,235/338] ubifs: Add missing iput if do_tmpfile() failed in rename whiteout [4.19,236/338] ubifs: setflags: Make dirtied_ino_d 8 bytes aligned [4.19,237/338] ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock() [4.19,238/338] ubifs: rename_whiteout: correct old_dir size computing [4.19,239/338] can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path [4.19,240/338] can: mcba_usb: properly check endpoint type [4.19,241/338] gfs2: Make sure FITRIM minlen is rounded up to fs block size [4.19,242/338] pinctrl: pinconf-generic: Print arguments for bias-pull-* [4.19,243/338] ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl [4.19,244/338] ACPI: CPPC: Avoid out of bounds access when parsing _CPC data [4.19,245/338] mm/mmap: return 1 from stack_guard_gap __setup() handler [4.19,246/338] mm/memcontrol: return 1 from cgroup.memory __setup() handler [4.19,247/338] mm/usercopy: return 1 from hardened_usercopy __setup() handler [4.19,248/338] bpf: Fix comment for helper bpf_current_task_under_cgroup() [4.19,249/338] ubi: fastmap: Return error code if memory allocation fails in add_aeb() [4.19,250/338] ASoC: topology: Allow TLV control to be either read or write [4.19,251/338] ARM: dts: spear1340: Update serial node properties [4.19,252/338] ARM: dts: spear13xx: Update SPI dma properties [4.19,253/338] um: Fix uml_mconsole stop/go [4.19,254/338] openvswitch: Fixed nd target mask field in the flow dump. [4.19,255/338] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasnt activated [4.19,256/338] ubifs: Rectify space amount budget for mkdir/tmpfile operations [4.19,257/338] rtc: wm8350: Handle error for wm8350_register_irq [4.19,258/338] riscv module: remove (NOLOAD) [4.19,259/338] ARM: 9187/1: JIVE: fix return value of __setup handler [4.19,260/338] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs [4.19,261/338] drm: Add orientation quirk for GPD Win Max [4.19,262/338] ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 [4.19,263/338] drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj [4.19,264/338] ptp: replace snprintf with sysfs_emit [4.19,265/338] powerpc: dts: t104xrdb: fix phy type for FMAN 4/5 [4.19,266/338] scsi: mvsas: Replace snprintf() with sysfs_emit() [4.19,267/338] scsi: bfa: Replace snprintf() with sysfs_emit() [4.19,268/338] power: supply: axp20x_battery: properly report current when discharging [4.19,269/338] powerpc: Set crashkernel offset to mid of RMA region [4.19,270/338] PCI: aardvark: Fix support for MSI interrupts [4.19,271/338] iommu/arm-smmu-v3: fix event handling soft lockup [4.19,272/338] usb: ehci: add pci device support for Aspeed platforms [4.19,273/338] PCI: pciehp: Add Qualcomm quirk for Command Completed erratum [4.19,274/338] ipv4: Invalidate neighbour for broadcast address upon address addition [4.19,275/338] dm ioctl: prevent potential spectre v1 gadget [4.19,276/338] drm/amdkfd: make CRAT table missing message informational only [4.19,277/338] scsi: pm8001: Fix pm8001_mpi_task_abort_resp() [4.19,278/338] scsi: aha152x: Fix aha152x_setup() __setup handler return value [4.19,279/338] net/smc: correct settings of RMB window update limit [4.19,280/338] macvtap: advertise link netns via netlink [4.19,281/338] bnxt_en: Eliminate unintended link toggle during FW reset [4.19,282/338] MIPS: fix fortify panic when copying asm exception handlers [4.19,283/338] scsi: libfc: Fix use after free in fc_exch_abts_resp() [4.19,284/338] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm [4.19,285/338] xtensa: fix DTC warning unit_address_format [4.19,286/338] Bluetooth: Fix use after free in hci_send_acl [4.19,287/338] init/main.c: return 1 from handled __setup() functions [4.19,288/338] minix: fix bug when opening a file with O_DIRECT [4.19,289/338] w1: w1_therm: fixes w1_seq for ds28ea00 sensors [4.19,290/338] NFSv4: Protect the state recovery thread against direct reclaim [4.19,291/338] xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32 [4.19,292/338] clk: Enforce that disjoints limits are invalid [4.19,293/338] SUNRPC/call_alloc: async tasks mustnt block waiting for memory [4.19,294/338] NFS: swap IO handling is slightly different for O_DIRECT IO [4.19,295/338] NFS: swap-out must always use STABLE writes. [4.19,296/338] serial: samsung_tty: do not unlock port->lock for uart_write_wakeup() [4.19,297/338] virtio_console: eliminate anonymous module_init & module_exit [4.19,298/338] jfs: prevent NULL deref in diFree [4.19,299/338] parisc: Fix CPU affinity for Lasi, WAX and Dino chips [4.19,300/338] net: add missing SOF_TIMESTAMPING_OPT_ID support [4.19,301/338] mm: fix race between MADV_FREE reclaim and blkdev direct IO read [4.19,302/338] KVM: arm64: Check arm64_get_bp_hardening_data() didnt return NULL [4.19,303/338] drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() [4.19,304/338] Drivers: hv: vmbus: Fix potential crash on module unload [4.19,305/338] scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() [4.19,306/338] net: stmmac: Fix unset max_speed difference between DT and non-DT platforms [4.19,307/338] drm/imx: Fix memory leak in imx_pd_connector_get_modes [4.19,308/338] net: openvswitch: dont send internal clone attribute to the userspace. [4.19,309/338] rxrpc: fix a race in rxrpc_exit_net() [4.19,310/338] qede: confirm skb is allocated before using [4.19,311/338] spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() [4.19,312/338] drbd: Fix five use after free bugs in get_initial_state [4.19,313/338] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning" [4.19,314/338] mmc: renesas_sdhi: dont overwrite TAP settings when HS400 tuning is complete [4.19,315/338] mmmremap.c: avoid pointless invalidate_range_start/end on mremap(old_size=0) [4.19,316/338] mm/mempolicy: fix mpol_new leak in shared_policy_replace [4.19,317/338] x86/pm: Save the MSR validity status at context setup [4.19,318/338] x86/speculation: Restore speculation related MSRs during S3 resume [4.19,319/338] btrfs: fix qgroup reserve overflow the qgroup limit [4.19,320/338] arm64: patch_text: Fixup last cpu should be master [4.19,321/338] ata: sata_dwc_460ex: Fix crash due to OOB write [4.19,322/338] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator [4.19,323/338] irqchip/gic-v3: Fix GICR_CTLR.RWP polling [4.19,324/338] tools build: Filter out options and warnings not supported by clang [4.19,325/338] tools build: Use $(shell ) instead of `` to get embedded libperls ccopts [4.19,326/338] dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" [4.19,327/338] mm: dont skip swap entry even if zap_details specified [4.19,328/338] arm64: module: remove (NOLOAD) from linker script [4.19,329/338] mm/sparsemem: fix mem_section will never be NULL gcc 12 warning [4.19,330/338] cgroup: Use open-time credentials for process migraton perm checks [4.19,331/338] cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv [4.19,332/338] cgroup: Use open-time cgroup namespace for process migration perm checks [4.19,333/338] selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 [4.19,334/338] selftests: cgroup: Test open-time credential usage for migration checks [4.19,335/338] selftests: cgroup: Test open-time cgroup namespace usage for migration checks [4.19,336/338] xfrm: policy: match with both mark and mask on user interfaces [4.19,337/338] drm/amdgpu: Check if fd really is an amdgpu fd. [4.19,338/338] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu

[4.19,029/338] NFSD: prevent integer overflow on 32 bit systems

Commit Message

Patch