1. Forum
  2. Usenet
  3. LINUX.DEBIAN.KERNEL

  • Bug#1103277: marked as done (linux: CVE-2024-38541 for 6.1 branch) (3/4

    From Debian Bug Tracking System@1:229/2 to All on Wed May 7 20:10:01 2025
    [continued from previous message]

    - xen-netfront: handle NULL returned by xdp_convert_buff_to_frame()
    - drm/amd/display: Fix gpu reset in multidisplay config
    - drm/amd/display: Force full update in gpu reset
    - [x86] KVM: SVM: Allocate IR data using atomic allocation
    - USB: storage: quirk for ADATA Portable HDD CH94
    - mei: me: add panther lake H DID
    - [x86] KVM: x86: Explicitly treat routing entry type changes as changes
    - [x86] KVM: x86: Reset IRTE to host control if *new* route isn't postable
    - [arm64] serial: msm: Configure correct working mode before starting
    earlycon
    - USB: serial: ftdi_sio: add support for Abacus Electrics Optical Probe
    - USB: serial: option: add Sierra Wireless EM9291
    - USB: serial: simple: add OWON HDS200 series oscilloscope support
    - [arm64,armhf] usb: chipidea: ci_hdrc_imx: fix usbmisc handling
    - [arm64,armhf] usb: chipidea: ci_hdrc_imx: fix call balance of regulator
    routines
    - [arm64,armhf] usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error
    handling
    - USB: OHCI: Add quirk for LS7A OHCI controller (rev 0x02)
    - [arm64,armhf] usb: dwc3: gadget: check that event count does not exceed
    event buffer length
    - [arm64,armhf] usb: dwc3: xilinx: Prevent spike in reset signal
    - usb: quirks: add DELAY_INIT quirk for Silicon Motion Flash Drive
    - usb: quirks: Add delay init quirk for SanDisk 3.2Gen1 Flash Drive
    - USB: VLI disk crashes if LPM is used
    - USB: wdm: handle IO errors in wdm_wwan_port_start
    - USB: wdm: close race between wdm_open and wdm_wwan_port_stop
    - USB: wdm: wdm_wwan_port_tx_complete mutex in atomic context
    - USB: wdm: add annotation
    - [mips*] cm: Detect CM quirks from device tree
    - crypto: null - Use spin lock instead of mutex
    - bpf: Fix deadlock between rcu_tasks_trace and event_mutex.
    - clk: check for disabled clock-provider in of_clk_get_hw_from_clkspec()
    - [s390x] sclp: Add check for get_zeroed_page()
    - [s390x] tty: Fix a potential memory leak bug
    - [arm64,armhf] usb: dwc3: gadget: Refactor loop to avoid NULL endpoints
    - [arm64,armhf] usb: dwc3: gadget: Avoid using reserved endpoints on Intel
    Merrifield
    - sound/virtio: Fix cancel_sync warnings on uninitialized work_structs
    - usb: xhci: Avoid Stop Endpoint retry loop if the endpoint seems Running
    - [armhf] usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev()
    - [arm64,armhf] usb: host: xhci-plat: mvebu: use ->quirks instead of
    ->init_quirk() func
    - [x86] thunderbolt: Scan retimers after device router has been enumerated
    - objtool: Silence more KCOV warnings
    - objtool, ASoC: codecs: wcd934x: Remove potential undefined behavior in
    wcd934x_slim_irq_handler()
    - objtool, lkdtm: Obfuscate the do_nothing() pointer
    - [amd64] qibfs: fix _another_ leak
    - 9p/net: fix improper handling of bogus negative read/write replies
    - [arm64] rtc: pcf85063: do a SW reset if POR failed
    - [s390x] KVM: s390: Don't use %pK through tracepoints
    - udmabuf: fix a buf size overflow issue during udmabuf creation
    - xen: Change xen-acpi-processor dom0 dependency
    - nvme: requeue namespace scan on missed AENs
    - ACPI: EC: Set ec_no_wakeup for Lenovo Go S
    - ACPI PPTT: Fix coding mistakes in a couple of sizeof() calls
    - nvme: re-read ANA log page after ns scan completes
    - objtool: Stop UNRET validation on UD2
    - [x86] bugs: Use SBPB in write_ibpb() if applicable
    - [x86] bugs: Don't fill RSB on VMEXIT with eIBRS+retpoline
    - [x86] bugs: Don't fill RSB on context switch with eIBRS
    - ext4: make block validity check resistent to sb bh corruption
    - [arm64] scsi: hisi_sas: Fix I/O errors caused by hardware port ID changes
    - scsi: pm80xx: Set phy_attached to zero when device is gone
    - [x86] i8253: Call clockevent_i8253_disable() with interrupts disabled
    - loop: aio inherit the ioprio of original request
    - md/raid1: Add check for missing source disk in process_checks()
    - [arm64,armhf] spi: spi-imx: Add check for spi_imx_setupxfer()
    - of: module: add buffer overflow check in of_modalias() (CVE-2024-38541)
    (Closes: #1103277)
    - jfs: define xtree root and page independently
    - [x86] comedi: jr3_pci: Fix synchronous deletion of timer
    - net/sched: act_mirred: don't override retval if we already lost the skb
    (CVE-2024-26739)
    - [arm64,armhf] net: dsa: mv88e6xxx: fix atu_move_port_mask for 6341 family
    - [arm64,armhf] net: dsa: mv88e6xxx: enable PVT for 6321 switch
    - [arm64,armhf] net: dsa: mv88e6xxx: enable .port_set_policy() for 6320
    family
    - [arm64,armhf] net: dsa: mv88e6xxx: enable STU methods for 6320 family
    - xdp: Reset bpf_redirect_info before running a xdp's BPF prog.
    - nvme: fixup scan failure for non-ANA multipath controllers
    - tracing: Remove pointer (asterisk) and brackets from cpumask_t field
    - PCI: Fix use-after-free in pci_bus_release_domain_nr()
    - objtool: Silence more KCOV warnings, part 2
    https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.137
    .
    [ Salvatore Bonaccorso ]
    * Bump ABI to 35
    * md: move initialization and destruction of 'io_acct_set' to md.c
    (Closes: #1104460)
    * Revert "rndis_host: Flag RNDIS modems as WWAN devices" (Closes: #1104511)
    .
    [ Raphaƫl Hertzog ]
    * udeb: add dm-thin-pool md-modules (Closes: #956226)
    Checksums-Sha1:
    069fc0f8bed9ebad19079717add0a6ccc5c686cf 290931 linux_6.1.137-1.dsc
    0ffea42f29bf49f2d84be0e47f8da46d18b0e7c1 137760676 linux_6.1.137.orig.tar.xz
    e8430d28fea569ef1a5f79487ebffcecf49667f5 1750936 linux_6.1.137-1.debian.tar.xz
    66c8732b9a231716ea33a0214af9c8c50b70efc0 6690 linux_6.1.137-1_source.buildinfo Checksums-Sha256:
    4ab504a4a7188ba3cfcf19b5ca80b5d5d742f7dab0cf558a835898092544dc0a 290931 linux_6.1.137-1.dsc
    7ca14b68aff9a98c1eaa3500480dbf94d4a8393ab3232e046de4ad44b13a0d30 137760676 linux_6.1.137.orig.tar.xz
    61165b4a038811ea07b95d7ded6323c2a11db55299174276dfdefa3006afdf11 1750936 linux_6.1.137-1.debian.tar.xz
    4caf267157f9a197ef7cd9f365c424e84e6713fadc6f985e3d515b1cef8b9376 6690 linux_6.1.137-1_source.buildinfo
    Files:
    8367582d2317c6e24076bea0643d988a 290931 kernel optional linux_6.1.137-1.dsc
    0e08fe560c2e1feeaad62aa61429def3 137760676 kernel optional linux_6.1.137.orig.tar.xz
    99da69e79fdbb8fc0472a5bdca8f8021 1750936 kernel optional linux_6.1.137-1.debian.tar.xz
    f00981ba6839f0693ed43562f1c86303 6690 kernel optional linux_6.1.137-1_source.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmgbeOtfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89EOJMP/inkBjl3hJB7cbbEKZHcNt8cmXCjLqsf SU13G+HHpTvGaEllnedBzcrlNR7FrGRcI6B0dFjtNWhj+StH6JFfiy2LGmen7zBU 0sEKL9yw9yaVVd+nUtP0KMlzmEnZLPL1okRQ6v0c/HVQImM0IGP5RAnByX3plhe7 FGSfNH6uuvqwQJm5frlwzJRs0Pl9CRVSK6GacerIe+1Jxx5X2Yv1YdGgmoGMYUVB iOXvu9pafsSvEC/KLEN7LFgkO+IBQ/FneZ4WDlGM3gT1JHyLsMIJ872WgDdLLol9 Hk7rfyIbKOPTnpKnjJW8LzUtHUFm22Vo1cITHA9NMeMndiprDADDuhHxxu5NoMrQ 428eRV3YHM9wVZxRQVYV96n4E4sj6O4edXwKn8kUzJQv/85d7Xb5TWSOxbWWda2c v7xgAVUfrHWWB1eOlIMCncyAxrXfxdMp0pc5KnrpE6eeybZVdgPz0szkMA+4BXSW

    [continued in next message]

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)