=======================================
Sat, 09 Jul 2022 - Debian 11.4 released
=======================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:22:01 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

python-hbmqtt |    0.9.6-1 | source
python3-hbmqtt |    0.9.6-1 | all
Closed bugs: 1001639

------------------- Reason -------------------
RoQA; broken; low popcon; unmaintained
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:22:21 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

      elog |  3.1.3-1-1 | source, amd64, arm64, armel, armhf, i386, mips64el, mipsel, ppc64el, s390x
Closed bugs: 1010196

------------------- Reason -------------------
RoQA; unmaintained; security issues
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:33:56 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

thunderbird-l10n-si | 1:78.14.0-1~deb11u1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by thunderbird - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:35:40 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

libegl1-nvidia | 460.91.03-1 | amd64, arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by nvidia-graphics-drivers - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:36:55 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

libegl1-nvidia-tesla-460 | 460.91.03-1 | amd64, arm64, ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by nvidia-graphics-drivers-tesla-460 - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:44:42 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
affs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
affs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
affs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
affs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
affs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
affs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
affs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
affs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
affs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
affs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
affs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
ata-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
ata-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
ata-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
ata-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
ata-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
ata-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
ata-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
ata-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
ata-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
ata-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
ata-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
ata-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
ata-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
ata-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
ata-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
btrfs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
btrfs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
btrfs-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
btrfs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
btrfs-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
btrfs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
btrfs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
btrfs-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
btrfs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
btrfs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
btrfs-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
btrfs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
btrfs-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
btrfs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
btrfs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
btrfs-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
btrfs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
btrfs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
btrfs-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
btrfs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
btrfs-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
btrfs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
btrfs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
btrfs-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
cdrom-core-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
cdrom-core-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
cdrom-core-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
cdrom-core-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
cdrom-core-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
cdrom-core-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
cdrom-core-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
cdrom-core-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
cdrom-core-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
cdrom-core-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
cdrom-core-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
cdrom-core-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
cdrom-core-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
cdrom-core-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
cdrom-core-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
cdrom-core-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
cdrom-core-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
cdrom-core-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
crc-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
crc-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
crc-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
crc-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
crc-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
crc-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
crc-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
crc-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
crc-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
crc-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
crc-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
crc-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
crc-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
crc-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
crc-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
crc-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
crc-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
crc-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
crc-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
crc-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
crc-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
crc-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
crc-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
crc-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
crypto-dm-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
crypto-dm-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
crypto-dm-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
crypto-dm-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
crypto-dm-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
crypto-dm-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
crypto-dm-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
crypto-dm-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
crypto-dm-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
crypto-dm-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
crypto-dm-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
crypto-dm-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
crypto-dm-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
crypto-dm-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
crypto-dm-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
crypto-dm-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
crypto-dm-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
crypto-dm-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
crypto-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
crypto-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
crypto-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
crypto-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
crypto-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
crypto-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
crypto-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
crypto-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
crypto-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
crypto-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
crypto-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
crypto-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
crypto-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
crypto-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
crypto-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
crypto-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
crypto-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
crypto-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
crypto-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
crypto-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
crypto-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
crypto-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
crypto-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
crypto-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
dasd-extra-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
dasd-extra-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
dasd-extra-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
dasd-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
dasd-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
dasd-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
efi-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
efi-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
efi-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
event-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
event-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
event-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
event-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
event-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
event-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
event-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
event-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
event-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
event-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
event-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
event-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
event-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
event-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
event-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
event-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
event-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
event-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
event-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
event-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
event-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
ext4-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
ext4-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
ext4-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
ext4-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
ext4-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
ext4-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
ext4-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
ext4-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
ext4-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
ext4-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
ext4-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
ext4-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
ext4-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
ext4-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
ext4-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
ext4-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
ext4-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
ext4-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
ext4-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
ext4-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
ext4-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
ext4-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
ext4-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
ext4-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
f2fs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
f2fs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
f2fs-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
f2fs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
f2fs-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
f2fs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
f2fs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
f2fs-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
f2fs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
f2fs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
f2fs-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
f2fs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
f2fs-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
f2fs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
f2fs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
f2fs-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
f2fs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
f2fs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
f2fs-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
f2fs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
f2fs-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
f2fs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
f2fs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
f2fs-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
fancontrol-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
fancontrol-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
fancontrol-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
fat-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
fat-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
fat-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
fat-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
fat-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
fat-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
fat-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
fat-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
fat-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
fat-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
fat-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
fat-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
fat-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
fat-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
fat-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
fat-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
fat-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
fat-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
fat-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
fat-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
fat-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
fat-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
fat-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
fat-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
fb-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
fb-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
fb-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
fb-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
fb-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
fb-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
fb-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
fb-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
fb-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
fb-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
fb-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
fb-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
fb-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
fb-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
fb-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
fb-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
fb-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
fb-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
firewire-core-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
firewire-core-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
firewire-core-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
firewire-core-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
firewire-core-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
firewire-core-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
fuse-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
fuse-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
fuse-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
fuse-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
fuse-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
fuse-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
fuse-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
fuse-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
fuse-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
fuse-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
fuse-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
fuse-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
fuse-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
fuse-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
fuse-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
fuse-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
fuse-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
fuse-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
fuse-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
fuse-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
fuse-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
fuse-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
fuse-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
fuse-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
hypervisor-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
hypervisor-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
hypervisor-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
i2c-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
i2c-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
i2c-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
i2c-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
i2c-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
i2c-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
i2c-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
i2c-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
i2c-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
i2c-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
i2c-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
i2c-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
input-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
input-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
input-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
input-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
input-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
input-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
input-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
input-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
input-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
input-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
input-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
input-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
input-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
input-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
input-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
input-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
input-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
input-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
input-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
input-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
input-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
ipv6-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
ipv6-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
ipv6-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
isofs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
isofs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
isofs-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
isofs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
isofs-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
isofs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
isofs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
isofs-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
isofs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
isofs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
isofs-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
isofs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
isofs-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
isofs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
isofs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
isofs-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
isofs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
isofs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
isofs-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
isofs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
isofs-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
isofs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
isofs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
isofs-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
jffs2-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
jffs2-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
jffs2-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
jfs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
jfs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
jfs-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
jfs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
jfs-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
jfs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
jfs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
jfs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
jfs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
jfs-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
jfs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
jfs-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
jfs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
jfs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
jfs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
jfs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
jfs-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
jfs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
jfs-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
jfs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
jfs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
kernel-image-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
kernel-image-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
kernel-image-5.10.0-10-armmp-di |  5.10.84-1 | armhf
kernel-image-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
kernel-image-5.10.0-10-marvell-di |  5.10.84-1 | armel
kernel-image-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
kernel-image-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
kernel-image-5.10.0-10-s390x-di |  5.10.84-1 | s390x
kernel-image-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
kernel-image-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
kernel-image-5.10.0-14-armmp-di | 5.10.113-1 | armhf
kernel-image-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
kernel-image-5.10.0-14-marvell-di | 5.10.113-1 | armel
kernel-image-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
kernel-image-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
kernel-image-5.10.0-14-s390x-di | 5.10.113-1 | s390x
kernel-image-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
kernel-image-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
kernel-image-5.10.0-15-armmp-di | 5.10.120-1 | armhf
kernel-image-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
kernel-image-5.10.0-15-marvell-di | 5.10.120-1 | armel
kernel-image-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
kernel-image-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
kernel-image-5.10.0-15-s390x-di | 5.10.120-1 | s390x
leds-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
leds-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
leds-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
leds-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
leds-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
leds-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
     linux |  5.10.84-1 | source
     linux | 5.10.106-1 | source
     linux | 5.10.113-1 | source
     linux | 5.10.120-1 | source
 linux-doc |  5.10.84-1 | all
 linux-doc | 5.10.106-1 | all
 linux-doc | 5.10.113-1 | all
 linux-doc | 5.10.120-1 | all
linux-doc-5.10 |  5.10.84-1 | all
linux-doc-5.10 | 5.10.106-1 | all
linux-doc-5.10 | 5.10.113-1 | all
linux-doc-5.10 | 5.10.120-1 | all
linux-headers-5.10.0-10-4kc-malta |  5.10.84-1 | mipsel
linux-headers-5.10.0-10-5kc-malta |  5.10.84-1 | mips64el, mipsel
linux-headers-5.10.0-10-686 |  5.10.84-1 | i386
linux-headers-5.10.0-10-686-pae |  5.10.84-1 | i386
linux-headers-5.10.0-10-amd64 |  5.10.84-1 | amd64
linux-headers-5.10.0-10-arm64 |  5.10.84-1 | arm64
linux-headers-5.10.0-10-armmp |  5.10.84-1 | armhf
linux-headers-5.10.0-10-armmp-lpae |  5.10.84-1 | armhf
linux-headers-5.10.0-10-cloud-amd64 |  5.10.84-1 | amd64
linux-headers-5.10.0-10-cloud-arm64 |  5.10.84-1 | arm64
linux-headers-5.10.0-10-common |  5.10.84-1 | all
linux-headers-5.10.0-10-common-rt |  5.10.84-1 | all
linux-headers-5.10.0-10-loongson-3 |  5.10.84-1 | mips64el, mipsel
linux-headers-5.10.0-10-marvell |  5.10.84-1 | armel
linux-headers-5.10.0-10-octeon |  5.10.84-1 | mips64el, mipsel
linux-headers-5.10.0-10-powerpc64le |  5.10.84-1 | ppc64el
linux-headers-5.10.0-10-rpi |  5.10.84-1 | armel
linux-headers-5.10.0-10-rt-686-pae |  5.10.84-1 | i386
linux-headers-5.10.0-10-rt-amd64 |  5.10.84-1 | amd64
linux-headers-5.10.0-10-rt-arm64 |  5.10.84-1 | arm64
linux-headers-5.10.0-10-rt-armmp |  5.10.84-1 | armhf
linux-headers-5.10.0-10-s390x |  5.10.84-1 | s390x
linux-headers-5.10.0-14-4kc-malta | 5.10.113-1 | mipsel
linux-headers-5.10.0-14-5kc-malta | 5.10.113-1 | mips64el, mipsel
linux-headers-5.10.0-14-686 | 5.10.113-1 | i386
linux-headers-5.10.0-14-686-pae | 5.10.113-1 | i386
linux-headers-5.10.0-14-amd64 | 5.10.113-1 | amd64
linux-headers-5.10.0-14-arm64 | 5.10.113-1 | arm64
linux-headers-5.10.0-14-armmp | 5.10.113-1 | armhf
linux-headers-5.10.0-14-armmp-lpae | 5.10.113-1 | armhf
linux-headers-5.10.0-14-cloud-amd64 | 5.10.113-1 | amd64
linux-headers-5.10.0-14-cloud-arm64 | 5.10.113-1 | arm64
linux-headers-5.10.0-14-common | 5.10.113-1 | all
linux-headers-5.10.0-14-common-rt | 5.10.113-1 | all
linux-headers-5.10.0-14-loongson-3 | 5.10.113-1 | mips64el, mipsel
linux-headers-5.10.0-14-marvell | 5.10.113-1 | armel
linux-headers-5.10.0-14-octeon | 5.10.113-1 | mips64el, mipsel
linux-headers-5.10.0-14-powerpc64le | 5.10.113-1 | ppc64el
linux-headers-5.10.0-14-rpi | 5.10.113-1 | armel
linux-headers-5.10.0-14-rt-686-pae | 5.10.113-1 | i386
linux-headers-5.10.0-14-rt-amd64 | 5.10.113-1 | amd64
linux-headers-5.10.0-14-rt-arm64 | 5.10.113-1 | arm64
linux-headers-5.10.0-14-rt-armmp | 5.10.113-1 | armhf
linux-headers-5.10.0-14-s390x | 5.10.113-1 | s390x
linux-headers-5.10.0-15-4kc-malta | 5.10.120-1 | mipsel
linux-headers-5.10.0-15-5kc-malta | 5.10.120-1 | mips64el, mipsel
linux-headers-5.10.0-15-686 | 5.10.120-1 | i386
linux-headers-5.10.0-15-686-pae | 5.10.120-1 | i386
linux-headers-5.10.0-15-amd64 | 5.10.120-1 | amd64
linux-headers-5.10.0-15-arm64 | 5.10.120-1 | arm64
linux-headers-5.10.0-15-armmp | 5.10.120-1 | armhf
linux-headers-5.10.0-15-armmp-lpae | 5.10.120-1 | armhf
linux-headers-5.10.0-15-cloud-amd64 | 5.10.120-1 | amd64
linux-headers-5.10.0-15-cloud-arm64 | 5.10.120-1 | arm64
linux-headers-5.10.0-15-common | 5.10.120-1 | all
linux-headers-5.10.0-15-common-rt | 5.10.120-1 | all
linux-headers-5.10.0-15-loongson-3 | 5.10.120-1 | mips64el, mipsel
linux-headers-5.10.0-15-marvell | 5.10.120-1 | armel
linux-headers-5.10.0-15-octeon | 5.10.120-1 | mips64el, mipsel
linux-headers-5.10.0-15-powerpc64le | 5.10.120-1 | ppc64el
linux-headers-5.10.0-15-rpi | 5.10.120-1 | armel
linux-headers-5.10.0-15-rt-686-pae | 5.10.120-1 | i386
linux-headers-5.10.0-15-rt-amd64 | 5.10.120-1 | amd64
linux-headers-5.10.0-15-rt-arm64 | 5.10.120-1 | arm64
linux-headers-5.10.0-15-rt-armmp | 5.10.120-1 | armhf
linux-headers-5.10.0-15-s390x | 5.10.120-1 | s390x
linux-image-5.10.0-10-4kc-malta |  5.10.84-1 | mipsel
linux-image-5.10.0-10-4kc-malta-dbg |  5.10.84-1 | mipsel
linux-image-5.10.0-10-5kc-malta |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-5kc-malta-dbg |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-686-dbg |  5.10.84-1 | i386
linux-image-5.10.0-10-686-pae-dbg |  5.10.84-1 | i386
linux-image-5.10.0-10-686-pae-unsigned |  5.10.84-1 | i386
linux-image-5.10.0-10-686-unsigned |  5.10.84-1 | i386
linux-image-5.10.0-10-amd64-dbg |  5.10.84-1 | amd64
linux-image-5.10.0-10-amd64-unsigned |  5.10.84-1 | amd64
linux-image-5.10.0-10-arm64-dbg |  5.10.84-1 | arm64
linux-image-5.10.0-10-arm64-unsigned |  5.10.84-1 | arm64
linux-image-5.10.0-10-armmp |  5.10.84-1 | armhf
linux-image-5.10.0-10-armmp-dbg |  5.10.84-1 | armhf
linux-image-5.10.0-10-armmp-lpae |  5.10.84-1 | armhf
linux-image-5.10.0-10-armmp-lpae-dbg |  5.10.84-1 | armhf
linux-image-5.10.0-10-cloud-amd64-dbg |  5.10.84-1 | amd64
linux-image-5.10.0-10-cloud-amd64-unsigned |  5.10.84-1 | amd64
linux-image-5.10.0-10-cloud-arm64-dbg |  5.10.84-1 | arm64
linux-image-5.10.0-10-cloud-arm64-unsigned |  5.10.84-1 | arm64
linux-image-5.10.0-10-loongson-3 |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-loongson-3-dbg |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-marvell |  5.10.84-1 | armel
linux-image-5.10.0-10-marvell-dbg |  5.10.84-1 | armel
linux-image-5.10.0-10-octeon |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-octeon-dbg |  5.10.84-1 | mips64el, mipsel
linux-image-5.10.0-10-powerpc64le |  5.10.84-1 | ppc64el
linux-image-5.10.0-10-powerpc64le-dbg |  5.10.84-1 | ppc64el
linux-image-5.10.0-10-rpi |  5.10.84-1 | armel
linux-image-5.10.0-10-rpi-dbg |  5.10.84-1 | armel
linux-image-5.10.0-10-rt-686-pae-dbg |  5.10.84-1 | i386
linux-image-5.10.0-10-rt-686-pae-unsigned |  5.10.84-1 | i386
linux-image-5.10.0-10-rt-amd64-dbg |  5.10.84-1 | amd64
linux-image-5.10.0-10-rt-amd64-unsigned |  5.10.84-1 | amd64
linux-image-5.10.0-10-rt-arm64-dbg |  5.10.84-1 | arm64
linux-image-5.10.0-10-rt-arm64-unsigned |  5.10.84-1 | arm64
linux-image-5.10.0-10-rt-armmp |  5.10.84-1 | armhf
linux-image-5.10.0-10-rt-armmp-dbg |  5.10.84-1 | armhf
linux-image-5.10.0-10-s390x |  5.10.84-1 | s390x
linux-image-5.10.0-10-s390x-dbg |  5.10.84-1 | s390x
linux-image-5.10.0-14-4kc-malta | 5.10.113-1 | mipsel
linux-image-5.10.0-14-4kc-malta-dbg | 5.10.113-1 | mipsel
linux-image-5.10.0-14-5kc-malta | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-5kc-malta-dbg | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-686-dbg | 5.10.113-1 | i386
linux-image-5.10.0-14-686-pae-dbg | 5.10.113-1 | i386
linux-image-5.10.0-14-686-pae-unsigned | 5.10.113-1 | i386
linux-image-5.10.0-14-686-unsigned | 5.10.113-1 | i386
linux-image-5.10.0-14-amd64-dbg | 5.10.113-1 | amd64
linux-image-5.10.0-14-amd64-unsigned | 5.10.113-1 | amd64
linux-image-5.10.0-14-arm64-dbg | 5.10.113-1 | arm64
linux-image-5.10.0-14-arm64-unsigned | 5.10.113-1 | arm64
linux-image-5.10.0-14-armmp | 5.10.113-1 | armhf
linux-image-5.10.0-14-armmp-dbg | 5.10.113-1 | armhf
linux-image-5.10.0-14-armmp-lpae | 5.10.113-1 | armhf
linux-image-5.10.0-14-armmp-lpae-dbg | 5.10.113-1 | armhf
linux-image-5.10.0-14-cloud-amd64-dbg | 5.10.113-1 | amd64
linux-image-5.10.0-14-cloud-amd64-unsigned | 5.10.113-1 | amd64
linux-image-5.10.0-14-cloud-arm64-dbg | 5.10.113-1 | arm64
linux-image-5.10.0-14-cloud-arm64-unsigned | 5.10.113-1 | arm64
linux-image-5.10.0-14-loongson-3 | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-loongson-3-dbg | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-marvell | 5.10.113-1 | armel
linux-image-5.10.0-14-marvell-dbg | 5.10.113-1 | armel
linux-image-5.10.0-14-octeon | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-octeon-dbg | 5.10.113-1 | mips64el, mipsel
linux-image-5.10.0-14-powerpc64le | 5.10.113-1 | ppc64el
linux-image-5.10.0-14-powerpc64le-dbg | 5.10.113-1 | ppc64el
linux-image-5.10.0-14-rpi | 5.10.113-1 | armel
linux-image-5.10.0-14-rpi-dbg | 5.10.113-1 | armel
linux-image-5.10.0-14-rt-686-pae-dbg | 5.10.113-1 | i386
linux-image-5.10.0-14-rt-686-pae-unsigned | 5.10.113-1 | i386
linux-image-5.10.0-14-rt-amd64-dbg | 5.10.113-1 | amd64
linux-image-5.10.0-14-rt-amd64-unsigned | 5.10.113-1 | amd64
linux-image-5.10.0-14-rt-arm64-dbg | 5.10.113-1 | arm64
linux-image-5.10.0-14-rt-arm64-unsigned | 5.10.113-1 | arm64
linux-image-5.10.0-14-rt-armmp | 5.10.113-1 | armhf
linux-image-5.10.0-14-rt-armmp-dbg | 5.10.113-1 | armhf
linux-image-5.10.0-14-s390x | 5.10.113-1 | s390x
linux-image-5.10.0-14-s390x-dbg | 5.10.113-1 | s390x
linux-image-5.10.0-15-4kc-malta | 5.10.120-1 | mipsel
linux-image-5.10.0-15-4kc-malta-dbg | 5.10.120-1 | mipsel
linux-image-5.10.0-15-5kc-malta | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-5kc-malta-dbg | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-686-dbg | 5.10.120-1 | i386
linux-image-5.10.0-15-686-pae-dbg | 5.10.120-1 | i386
linux-image-5.10.0-15-686-pae-unsigned | 5.10.120-1 | i386
linux-image-5.10.0-15-686-unsigned | 5.10.120-1 | i386
linux-image-5.10.0-15-amd64-dbg | 5.10.120-1 | amd64
linux-image-5.10.0-15-amd64-unsigned | 5.10.120-1 | amd64
linux-image-5.10.0-15-arm64-dbg | 5.10.120-1 | arm64
linux-image-5.10.0-15-arm64-unsigned | 5.10.120-1 | arm64
linux-image-5.10.0-15-armmp | 5.10.120-1 | armhf
linux-image-5.10.0-15-armmp-dbg | 5.10.120-1 | armhf
linux-image-5.10.0-15-armmp-lpae | 5.10.120-1 | armhf
linux-image-5.10.0-15-armmp-lpae-dbg | 5.10.120-1 | armhf
linux-image-5.10.0-15-cloud-amd64-dbg | 5.10.120-1 | amd64
linux-image-5.10.0-15-cloud-amd64-unsigned | 5.10.120-1 | amd64
linux-image-5.10.0-15-cloud-arm64-dbg | 5.10.120-1 | arm64
linux-image-5.10.0-15-cloud-arm64-unsigned | 5.10.120-1 | arm64
linux-image-5.10.0-15-loongson-3 | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-loongson-3-dbg | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-marvell | 5.10.120-1 | armel
linux-image-5.10.0-15-marvell-dbg | 5.10.120-1 | armel
linux-image-5.10.0-15-octeon | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-octeon-dbg | 5.10.120-1 | mips64el, mipsel
linux-image-5.10.0-15-powerpc64le | 5.10.120-1 | ppc64el
linux-image-5.10.0-15-powerpc64le-dbg | 5.10.120-1 | ppc64el
linux-image-5.10.0-15-rpi | 5.10.120-1 | armel
linux-image-5.10.0-15-rpi-dbg | 5.10.120-1 | armel
linux-image-5.10.0-15-rt-686-pae-dbg | 5.10.120-1 | i386
linux-image-5.10.0-15-rt-686-pae-unsigned | 5.10.120-1 | i386
linux-image-5.10.0-15-rt-amd64-dbg | 5.10.120-1 | amd64
linux-image-5.10.0-15-rt-amd64-unsigned | 5.10.120-1 | amd64
linux-image-5.10.0-15-rt-arm64-dbg | 5.10.120-1 | arm64
linux-image-5.10.0-15-rt-arm64-unsigned | 5.10.120-1 | arm64
linux-image-5.10.0-15-rt-armmp | 5.10.120-1 | armhf
linux-image-5.10.0-15-rt-armmp-dbg | 5.10.120-1 | armhf
linux-image-5.10.0-15-s390x | 5.10.120-1 | s390x
linux-image-5.10.0-15-s390x-dbg | 5.10.120-1 | s390x
linux-source |  5.10.84-1 | all
linux-source | 5.10.106-1 | all
linux-source | 5.10.113-1 | all
linux-source | 5.10.120-1 | all
linux-source-5.10 |  5.10.84-1 | all
linux-source-5.10 | 5.10.106-1 | all
linux-source-5.10 | 5.10.113-1 | all
linux-source-5.10 | 5.10.120-1 | all
linux-support-5.10.0-10 |  5.10.84-1 | all
linux-support-5.10.0-14 | 5.10.113-1 | all
linux-support-5.10.0-15 | 5.10.120-1 | all
loop-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
loop-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
loop-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
loop-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
loop-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
loop-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
loop-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
loop-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
loop-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
loop-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
loop-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
loop-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
loop-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
loop-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
loop-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
loop-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
loop-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
loop-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
loop-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
loop-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
loop-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
loop-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
loop-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
loop-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
md-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
md-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
md-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
md-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
md-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
md-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
md-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
md-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
md-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
md-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
md-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
md-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
md-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
md-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
md-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
md-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
md-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
md-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
md-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
md-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
md-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
md-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
md-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
md-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
minix-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
minix-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
minix-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
minix-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
minix-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
minix-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
minix-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
minix-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
minix-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
minix-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
minix-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
minix-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
minix-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
minix-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
minix-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
mmc-core-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
mmc-core-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
mmc-core-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
mmc-core-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
mmc-core-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
mmc-core-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
mmc-core-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
mmc-core-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
mmc-core-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
mmc-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
mmc-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
mmc-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
mmc-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
mmc-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
mmc-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
mmc-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
mmc-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
mmc-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
mmc-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
mmc-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
mmc-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
mouse-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
mouse-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
mouse-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
mouse-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
mouse-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
mouse-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
mouse-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
mouse-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
mouse-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
mouse-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
mouse-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
mouse-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
mtd-core-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
mtd-core-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
mtd-core-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
mtd-core-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
mtd-core-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
mtd-core-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
mtd-core-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
mtd-core-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
mtd-core-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
mtd-core-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
mtd-core-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
mtd-core-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
mtd-core-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
mtd-core-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
mtd-core-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
mtd-core-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
mtd-core-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
mtd-core-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
mtd-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
mtd-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
mtd-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
mtd-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
mtd-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
mtd-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
multipath-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
multipath-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
multipath-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
multipath-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
multipath-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
multipath-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
multipath-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
multipath-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
multipath-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
multipath-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
multipath-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
multipath-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
multipath-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
multipath-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
multipath-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
multipath-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
multipath-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
multipath-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
multipath-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
multipath-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
multipath-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
multipath-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
multipath-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
multipath-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
nbd-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
nbd-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
nbd-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
nbd-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nbd-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
nbd-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
nbd-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
nbd-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
nbd-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
nbd-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
nbd-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
nbd-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nbd-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
nbd-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
nbd-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
nbd-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
nbd-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
nbd-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
nbd-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
nbd-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nbd-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
nbd-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
nbd-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
nbd-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
nfs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nfs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nfs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nic-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
nic-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
nic-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
nic-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nic-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
nic-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
nic-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
nic-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
nic-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
nic-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
nic-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
nic-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nic-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
nic-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
nic-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
nic-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
nic-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
nic-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
nic-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
nic-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nic-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
nic-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
nic-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
nic-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
nic-shared-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
nic-shared-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
nic-shared-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
nic-shared-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nic-shared-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
nic-shared-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
nic-shared-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
nic-shared-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
nic-shared-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
nic-shared-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
nic-shared-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nic-shared-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
nic-shared-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
nic-shared-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
nic-shared-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
nic-shared-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
nic-shared-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
nic-shared-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nic-shared-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
nic-shared-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
nic-shared-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
nic-usb-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
nic-usb-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
nic-usb-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
nic-usb-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nic-usb-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
nic-usb-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
nic-usb-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
nic-usb-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
nic-usb-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
nic-usb-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
nic-usb-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nic-usb-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
nic-usb-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
nic-usb-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
nic-usb-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
nic-usb-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
nic-usb-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
nic-usb-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nic-usb-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
nic-usb-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
nic-usb-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
nic-wireless-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
nic-wireless-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
nic-wireless-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
nic-wireless-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
nic-wireless-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
nic-wireless-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
nic-wireless-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
nic-wireless-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
nic-wireless-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
nic-wireless-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
nic-wireless-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
nic-wireless-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
nic-wireless-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
pata-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
pata-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
pata-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
pata-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
pata-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
pata-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
pata-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
pata-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
pata-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
pata-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
pata-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
pata-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
pata-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
pata-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
pata-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
ppp-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
ppp-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
ppp-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
ppp-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
ppp-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
ppp-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
ppp-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
ppp-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
ppp-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
ppp-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
ppp-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
ppp-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
ppp-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
ppp-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
ppp-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
ppp-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
ppp-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
ppp-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
ppp-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
ppp-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
ppp-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
rtc-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
rtc-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
rtc-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
sata-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
sata-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
sata-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
sata-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
sata-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
sata-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
sata-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
sata-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
sata-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
sata-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
sata-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
sata-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
sata-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
sata-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
sata-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
sata-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
sata-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
sata-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
sata-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
sata-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
sata-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
scsi-core-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
scsi-core-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
scsi-core-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
scsi-core-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
scsi-core-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
scsi-core-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
scsi-core-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
scsi-core-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
scsi-core-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
scsi-core-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
scsi-core-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
scsi-core-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
scsi-core-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
scsi-core-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
scsi-core-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
scsi-core-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
scsi-core-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
scsi-core-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
scsi-core-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
scsi-core-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
scsi-core-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
scsi-core-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
scsi-core-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
scsi-core-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
scsi-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
scsi-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
scsi-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
scsi-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
scsi-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
scsi-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
scsi-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
scsi-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
scsi-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
scsi-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
scsi-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
scsi-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
scsi-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
scsi-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
scsi-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
scsi-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
scsi-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
scsi-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
scsi-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
scsi-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
scsi-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
scsi-nic-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
scsi-nic-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
scsi-nic-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
scsi-nic-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
scsi-nic-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
scsi-nic-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
scsi-nic-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
scsi-nic-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
scsi-nic-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
scsi-nic-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
scsi-nic-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
scsi-nic-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
scsi-nic-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
serial-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
serial-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
serial-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
sound-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
sound-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
sound-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
sound-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
sound-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
sound-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
sound-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
sound-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
sound-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
sound-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
sound-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
sound-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
speakup-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
speakup-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
speakup-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
squashfs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
squashfs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
squashfs-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
squashfs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
squashfs-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
squashfs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
squashfs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
squashfs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
squashfs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
squashfs-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
squashfs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
squashfs-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
squashfs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
squashfs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
squashfs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
squashfs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
squashfs-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
squashfs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
squashfs-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
squashfs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
squashfs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
udf-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
udf-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
udf-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
udf-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
udf-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
udf-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
udf-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
udf-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
udf-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
udf-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
udf-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
udf-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
udf-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
udf-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
udf-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
udf-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
udf-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
udf-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
udf-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
udf-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
udf-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
udf-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
udf-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
udf-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x
uinput-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
uinput-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
uinput-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
uinput-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
uinput-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
uinput-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
uinput-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
uinput-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
uinput-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
usb-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
usb-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
usb-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
usb-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
usb-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
usb-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
usb-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
usb-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
usb-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
usb-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
usb-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
usb-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
usb-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
usb-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
usb-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
usb-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
usb-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
usb-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
usb-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
usb-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
usb-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
usb-serial-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
usb-serial-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
usb-serial-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
usb-serial-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
usb-serial-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
usb-serial-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
usb-serial-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
usb-serial-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
usb-serial-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
usb-serial-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
usb-serial-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
usb-serial-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
usb-serial-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
usb-serial-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
usb-serial-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
usb-serial-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
usb-serial-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
usb-serial-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
usb-serial-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
usb-serial-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
usb-serial-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
usb-storage-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
usb-storage-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
usb-storage-modules-5.10.0-10-armmp-di |  5.10.84-1 | armhf
usb-storage-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
usb-storage-modules-5.10.0-10-marvell-di |  5.10.84-1 | armel
usb-storage-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
usb-storage-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
usb-storage-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
usb-storage-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
usb-storage-modules-5.10.0-14-armmp-di | 5.10.113-1 | armhf
usb-storage-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
usb-storage-modules-5.10.0-14-marvell-di | 5.10.113-1 | armel
usb-storage-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
usb-storage-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
usb-storage-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
usb-storage-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
usb-storage-modules-5.10.0-15-armmp-di | 5.10.120-1 | armhf
usb-storage-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
usb-storage-modules-5.10.0-15-marvell-di | 5.10.120-1 | armel
usb-storage-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
usb-storage-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
xfs-modules-5.10.0-10-4kc-malta-di |  5.10.84-1 | mipsel
xfs-modules-5.10.0-10-5kc-malta-di |  5.10.84-1 | mips64el
xfs-modules-5.10.0-10-loongson-3-di |  5.10.84-1 | mips64el, mipsel
xfs-modules-5.10.0-10-octeon-di |  5.10.84-1 | mips64el, mipsel
xfs-modules-5.10.0-10-powerpc64le-di |  5.10.84-1 | ppc64el
xfs-modules-5.10.0-10-s390x-di |  5.10.84-1 | s390x
xfs-modules-5.10.0-14-4kc-malta-di | 5.10.113-1 | mipsel
xfs-modules-5.10.0-14-5kc-malta-di | 5.10.113-1 | mips64el
xfs-modules-5.10.0-14-loongson-3-di | 5.10.113-1 | mips64el, mipsel
xfs-modules-5.10.0-14-octeon-di | 5.10.113-1 | mips64el, mipsel
xfs-modules-5.10.0-14-powerpc64le-di | 5.10.113-1 | ppc64el
xfs-modules-5.10.0-14-s390x-di | 5.10.113-1 | s390x
xfs-modules-5.10.0-15-4kc-malta-di | 5.10.120-1 | mipsel
xfs-modules-5.10.0-15-5kc-malta-di | 5.10.120-1 | mips64el
xfs-modules-5.10.0-15-loongson-3-di | 5.10.120-1 | mips64el, mipsel
xfs-modules-5.10.0-15-octeon-di | 5.10.120-1 | mips64el, mipsel
xfs-modules-5.10.0-15-powerpc64le-di | 5.10.120-1 | ppc64el
xfs-modules-5.10.0-15-s390x-di | 5.10.120-1 | s390x

------------------- Reason -------------------
[auto-cruft] no longer built by src:linux
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:45:43 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
acpi-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
acpi-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
ata-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
ata-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
ata-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
btrfs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
btrfs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
btrfs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
cdrom-core-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
cdrom-core-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
cdrom-core-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
crc-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
crc-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
crc-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
crypto-dm-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
crypto-dm-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
crypto-dm-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
crypto-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
crypto-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
crypto-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
efi-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
efi-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
efi-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
event-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
event-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
event-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
ext4-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
ext4-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
ext4-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
f2fs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
f2fs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
f2fs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
fat-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
fat-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
fat-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
fb-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
fb-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
fb-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
firewire-core-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
firewire-core-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
firewire-core-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
fuse-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
fuse-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
fuse-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
i2c-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
i2c-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
i2c-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
input-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
input-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
input-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
isofs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
isofs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
isofs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
jfs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
jfs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
jfs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
kernel-image-5.10.0-10-amd64-di |  5.10.84-1 | amd64
kernel-image-5.10.0-14-amd64-di | 5.10.113-1 | amd64
kernel-image-5.10.0-15-amd64-di | 5.10.120-1 | amd64
linux-image-5.10.0-10-amd64 |  5.10.84-1 | amd64
linux-image-5.10.0-10-cloud-amd64 |  5.10.84-1 | amd64
linux-image-5.10.0-10-rt-amd64 |  5.10.84-1 | amd64
linux-image-5.10.0-14-amd64 | 5.10.113-1 | amd64
linux-image-5.10.0-14-cloud-amd64 | 5.10.113-1 | amd64
linux-image-5.10.0-14-rt-amd64 | 5.10.113-1 | amd64
linux-image-5.10.0-15-amd64 | 5.10.120-1 | amd64
linux-image-5.10.0-15-cloud-amd64 | 5.10.120-1 | amd64
linux-image-5.10.0-15-rt-amd64 | 5.10.120-1 | amd64
linux-signed-amd64 |  5.10.84+1 | source
linux-signed-amd64 | 5.10.106+1 | source
linux-signed-amd64 | 5.10.113+1 | source
linux-signed-amd64 | 5.10.120+1 | source
loop-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
loop-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
loop-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
md-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
md-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
md-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
mmc-core-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
mmc-core-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
mmc-core-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
mmc-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
mmc-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
mmc-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
mouse-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
mouse-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
mouse-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
mtd-core-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
mtd-core-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
mtd-core-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
multipath-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
multipath-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
multipath-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nbd-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nbd-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nbd-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nic-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nic-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nic-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nic-pcmcia-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nic-pcmcia-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nic-pcmcia-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nic-shared-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nic-shared-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nic-shared-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nic-usb-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nic-usb-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nic-usb-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
nic-wireless-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
nic-wireless-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
nic-wireless-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
pata-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
pata-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
pata-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
pcmcia-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
pcmcia-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
pcmcia-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
pcmcia-storage-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
pcmcia-storage-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
pcmcia-storage-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
ppp-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
ppp-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
ppp-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
rfkill-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
rfkill-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
rfkill-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
sata-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
sata-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
sata-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
scsi-core-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
scsi-core-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
scsi-core-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
scsi-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
scsi-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
scsi-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
scsi-nic-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
scsi-nic-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
scsi-nic-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
serial-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
serial-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
serial-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
sound-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
sound-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
sound-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
speakup-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
speakup-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
speakup-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
squashfs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
squashfs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
squashfs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
udf-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
udf-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
udf-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
uinput-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
uinput-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
uinput-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
usb-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
usb-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
usb-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
usb-serial-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
usb-serial-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
usb-serial-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
usb-storage-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
usb-storage-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
usb-storage-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64
xfs-modules-5.10.0-10-amd64-di |  5.10.84-1 | amd64
xfs-modules-5.10.0-14-amd64-di | 5.10.113-1 | amd64
xfs-modules-5.10.0-15-amd64-di | 5.10.120-1 | amd64

------------------- Reason -------------------
[auto-cruft] no longer built by src:linux-signed-amd64
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:46:49 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
ata-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
ata-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
btrfs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
btrfs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
btrfs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
cdrom-core-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
cdrom-core-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
cdrom-core-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
crc-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
crc-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
crc-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
crypto-dm-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
crypto-dm-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
crypto-dm-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
crypto-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
crypto-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
crypto-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
efi-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
efi-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
efi-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
event-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
event-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
event-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
ext4-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
ext4-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
ext4-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
f2fs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
f2fs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
f2fs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
fat-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
fat-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
fat-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
fb-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
fb-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
fb-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
fuse-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
fuse-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
fuse-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
i2c-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
i2c-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
i2c-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
input-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
input-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
input-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
isofs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
isofs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
isofs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
jfs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
jfs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
jfs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
kernel-image-5.10.0-10-arm64-di |  5.10.84-1 | arm64
kernel-image-5.10.0-14-arm64-di | 5.10.113-1 | arm64
kernel-image-5.10.0-15-arm64-di | 5.10.120-1 | arm64
leds-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
leds-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
leds-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
linux-image-5.10.0-10-arm64 |  5.10.84-1 | arm64
linux-image-5.10.0-10-cloud-arm64 |  5.10.84-1 | arm64
linux-image-5.10.0-10-rt-arm64 |  5.10.84-1 | arm64
linux-image-5.10.0-14-arm64 | 5.10.113-1 | arm64
linux-image-5.10.0-14-cloud-arm64 | 5.10.113-1 | arm64
linux-image-5.10.0-14-rt-arm64 | 5.10.113-1 | arm64
linux-image-5.10.0-15-arm64 | 5.10.120-1 | arm64
linux-image-5.10.0-15-cloud-arm64 | 5.10.120-1 | arm64
linux-image-5.10.0-15-rt-arm64 | 5.10.120-1 | arm64
linux-signed-arm64 |  5.10.84+1 | source
linux-signed-arm64 | 5.10.106+1 | source
linux-signed-arm64 | 5.10.113+1 | source
linux-signed-arm64 | 5.10.120+1 | source
loop-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
loop-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
loop-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
md-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
md-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
md-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
mmc-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
mmc-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
mmc-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
mtd-core-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
mtd-core-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
mtd-core-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
multipath-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
multipath-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
multipath-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
nbd-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
nbd-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
nbd-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
nic-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
nic-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
nic-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
nic-shared-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
nic-shared-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
nic-shared-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
nic-usb-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
nic-usb-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
nic-usb-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
nic-wireless-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
nic-wireless-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
nic-wireless-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
ppp-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
ppp-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
ppp-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
sata-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
sata-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
sata-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
scsi-core-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
scsi-core-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
scsi-core-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
scsi-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
scsi-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
scsi-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
scsi-nic-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
scsi-nic-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
scsi-nic-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
squashfs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
squashfs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
squashfs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
udf-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
udf-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
udf-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
uinput-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
uinput-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
uinput-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
usb-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
usb-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
usb-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
usb-serial-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
usb-serial-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
usb-serial-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
usb-storage-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
usb-storage-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
usb-storage-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64
xfs-modules-5.10.0-10-arm64-di |  5.10.84-1 | arm64
xfs-modules-5.10.0-14-arm64-di | 5.10.113-1 | arm64
xfs-modules-5.10.0-15-arm64-di | 5.10.120-1 | arm64

------------------- Reason -------------------
[auto-cruft] no longer built by src:linux-signed-arm64
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Jul 2022 08:47:37 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-5.10.0-10-686-di |  5.10.84-1 | i386
acpi-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
acpi-modules-5.10.0-14-686-di | 5.10.113-1 | i386
acpi-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
acpi-modules-5.10.0-15-686-di | 5.10.120-1 | i386
acpi-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
ata-modules-5.10.0-10-686-di |  5.10.84-1 | i386
ata-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
ata-modules-5.10.0-14-686-di | 5.10.113-1 | i386
ata-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
ata-modules-5.10.0-15-686-di | 5.10.120-1 | i386
ata-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
btrfs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
btrfs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
btrfs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
btrfs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
btrfs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
btrfs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
cdrom-core-modules-5.10.0-10-686-di |  5.10.84-1 | i386
cdrom-core-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
cdrom-core-modules-5.10.0-14-686-di | 5.10.113-1 | i386
cdrom-core-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
cdrom-core-modules-5.10.0-15-686-di | 5.10.120-1 | i386
cdrom-core-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
crc-modules-5.10.0-10-686-di |  5.10.84-1 | i386
crc-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
crc-modules-5.10.0-14-686-di | 5.10.113-1 | i386
crc-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
crc-modules-5.10.0-15-686-di | 5.10.120-1 | i386
crc-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
crypto-dm-modules-5.10.0-10-686-di |  5.10.84-1 | i386
crypto-dm-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
crypto-dm-modules-5.10.0-14-686-di | 5.10.113-1 | i386
crypto-dm-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
crypto-dm-modules-5.10.0-15-686-di | 5.10.120-1 | i386
crypto-dm-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
crypto-modules-5.10.0-10-686-di |  5.10.84-1 | i386
crypto-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
crypto-modules-5.10.0-14-686-di | 5.10.113-1 | i386
crypto-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
crypto-modules-5.10.0-15-686-di | 5.10.120-1 | i386
crypto-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
efi-modules-5.10.0-10-686-di |  5.10.84-1 | i386
efi-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
efi-modules-5.10.0-14-686-di | 5.10.113-1 | i386
efi-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
efi-modules-5.10.0-15-686-di | 5.10.120-1 | i386
efi-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
event-modules-5.10.0-10-686-di |  5.10.84-1 | i386
event-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
event-modules-5.10.0-14-686-di | 5.10.113-1 | i386
event-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
event-modules-5.10.0-15-686-di | 5.10.120-1 | i386
event-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
ext4-modules-5.10.0-10-686-di |  5.10.84-1 | i386
ext4-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
ext4-modules-5.10.0-14-686-di | 5.10.113-1 | i386
ext4-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
ext4-modules-5.10.0-15-686-di | 5.10.120-1 | i386
ext4-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
f2fs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
f2fs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
f2fs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
f2fs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
f2fs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
f2fs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
fat-modules-5.10.0-10-686-di |  5.10.84-1 | i386
fat-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
fat-modules-5.10.0-14-686-di | 5.10.113-1 | i386
fat-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
fat-modules-5.10.0-15-686-di | 5.10.120-1 | i386
fat-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
fb-modules-5.10.0-10-686-di |  5.10.84-1 | i386
fb-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
fb-modules-5.10.0-14-686-di | 5.10.113-1 | i386
fb-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
fb-modules-5.10.0-15-686-di | 5.10.120-1 | i386
fb-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
firewire-core-modules-5.10.0-10-686-di |  5.10.84-1 | i386
firewire-core-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
firewire-core-modules-5.10.0-14-686-di | 5.10.113-1 | i386
firewire-core-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
firewire-core-modules-5.10.0-15-686-di | 5.10.120-1 | i386
firewire-core-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
fuse-modules-5.10.0-10-686-di |  5.10.84-1 | i386
fuse-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
fuse-modules-5.10.0-14-686-di | 5.10.113-1 | i386
fuse-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
fuse-modules-5.10.0-15-686-di | 5.10.120-1 | i386
fuse-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
i2c-modules-5.10.0-10-686-di |  5.10.84-1 | i386
i2c-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
i2c-modules-5.10.0-14-686-di | 5.10.113-1 | i386
i2c-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
i2c-modules-5.10.0-15-686-di | 5.10.120-1 | i386
i2c-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
input-modules-5.10.0-10-686-di |  5.10.84-1 | i386
input-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
input-modules-5.10.0-14-686-di | 5.10.113-1 | i386
input-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
input-modules-5.10.0-15-686-di | 5.10.120-1 | i386
input-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
isofs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
isofs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
isofs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
isofs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
isofs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
isofs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
jfs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
jfs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
jfs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
jfs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
jfs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
jfs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
kernel-image-5.10.0-10-686-di |  5.10.84-1 | i386
kernel-image-5.10.0-10-686-pae-di |  5.10.84-1 | i386
kernel-image-5.10.0-14-686-di | 5.10.113-1 | i386
kernel-image-5.10.0-14-686-pae-di | 5.10.113-1 | i386
kernel-image-5.10.0-15-686-di | 5.10.120-1 | i386
kernel-image-5.10.0-15-686-pae-di | 5.10.120-1 | i386
linux-image-5.10.0-10-686 |  5.10.84-1 | i386
linux-image-5.10.0-10-686-pae |  5.10.84-1 | i386
linux-image-5.10.0-10-rt-686-pae |  5.10.84-1 | i386
linux-image-5.10.0-14-686 | 5.10.113-1 | i386
linux-image-5.10.0-14-686-pae | 5.10.113-1 | i386
linux-image-5.10.0-14-rt-686-pae | 5.10.113-1 | i386
linux-image-5.10.0-15-686 | 5.10.120-1 | i386
linux-image-5.10.0-15-686-pae | 5.10.120-1 | i386
linux-image-5.10.0-15-rt-686-pae | 5.10.120-1 | i386
linux-signed-i386 |  5.10.84+1 | source
linux-signed-i386 | 5.10.106+1 | source
linux-signed-i386 | 5.10.113+1 | source
linux-signed-i386 | 5.10.120+1 | source
loop-modules-5.10.0-10-686-di |  5.10.84-1 | i386
loop-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
loop-modules-5.10.0-14-686-di | 5.10.113-1 | i386
loop-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
loop-modules-5.10.0-15-686-di | 5.10.120-1 | i386
loop-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
md-modules-5.10.0-10-686-di |  5.10.84-1 | i386
md-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
md-modules-5.10.0-14-686-di | 5.10.113-1 | i386
md-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
md-modules-5.10.0-15-686-di | 5.10.120-1 | i386
md-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
mmc-core-modules-5.10.0-10-686-di |  5.10.84-1 | i386
mmc-core-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
mmc-core-modules-5.10.0-14-686-di | 5.10.113-1 | i386
mmc-core-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
mmc-core-modules-5.10.0-15-686-di | 5.10.120-1 | i386
mmc-core-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
mmc-modules-5.10.0-10-686-di |  5.10.84-1 | i386
mmc-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
mmc-modules-5.10.0-14-686-di | 5.10.113-1 | i386
mmc-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
mmc-modules-5.10.0-15-686-di | 5.10.120-1 | i386
mmc-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
mouse-modules-5.10.0-10-686-di |  5.10.84-1 | i386
mouse-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
mouse-modules-5.10.0-14-686-di | 5.10.113-1 | i386
mouse-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
mouse-modules-5.10.0-15-686-di | 5.10.120-1 | i386
mouse-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
mtd-core-modules-5.10.0-10-686-di |  5.10.84-1 | i386
mtd-core-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
mtd-core-modules-5.10.0-14-686-di | 5.10.113-1 | i386
mtd-core-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
mtd-core-modules-5.10.0-15-686-di | 5.10.120-1 | i386
mtd-core-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
multipath-modules-5.10.0-10-686-di |  5.10.84-1 | i386
multipath-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
multipath-modules-5.10.0-14-686-di | 5.10.113-1 | i386
multipath-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
multipath-modules-5.10.0-15-686-di | 5.10.120-1 | i386
multipath-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nbd-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nbd-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nbd-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nbd-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nbd-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nbd-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nic-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nic-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nic-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nic-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nic-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nic-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nic-pcmcia-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nic-pcmcia-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nic-pcmcia-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nic-pcmcia-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nic-pcmcia-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nic-pcmcia-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nic-shared-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nic-shared-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nic-shared-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nic-shared-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nic-shared-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nic-shared-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nic-usb-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nic-usb-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nic-usb-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nic-usb-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nic-usb-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nic-usb-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
nic-wireless-modules-5.10.0-10-686-di |  5.10.84-1 | i386
nic-wireless-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
nic-wireless-modules-5.10.0-14-686-di | 5.10.113-1 | i386
nic-wireless-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
nic-wireless-modules-5.10.0-15-686-di | 5.10.120-1 | i386
nic-wireless-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
pata-modules-5.10.0-10-686-di |  5.10.84-1 | i386
pata-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
pata-modules-5.10.0-14-686-di | 5.10.113-1 | i386
pata-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
pata-modules-5.10.0-15-686-di | 5.10.120-1 | i386
pata-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
pcmcia-modules-5.10.0-10-686-di |  5.10.84-1 | i386
pcmcia-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
pcmcia-modules-5.10.0-14-686-di | 5.10.113-1 | i386
pcmcia-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
pcmcia-modules-5.10.0-15-686-di | 5.10.120-1 | i386
pcmcia-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
pcmcia-storage-modules-5.10.0-10-686-di |  5.10.84-1 | i386
pcmcia-storage-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
pcmcia-storage-modules-5.10.0-14-686-di | 5.10.113-1 | i386
pcmcia-storage-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
pcmcia-storage-modules-5.10.0-15-686-di | 5.10.120-1 | i386
pcmcia-storage-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
ppp-modules-5.10.0-10-686-di |  5.10.84-1 | i386
ppp-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
ppp-modules-5.10.0-14-686-di | 5.10.113-1 | i386
ppp-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
ppp-modules-5.10.0-15-686-di | 5.10.120-1 | i386
ppp-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
rfkill-modules-5.10.0-10-686-di |  5.10.84-1 | i386
rfkill-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
rfkill-modules-5.10.0-14-686-di | 5.10.113-1 | i386
rfkill-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
rfkill-modules-5.10.0-15-686-di | 5.10.120-1 | i386
rfkill-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
sata-modules-5.10.0-10-686-di |  5.10.84-1 | i386
sata-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
sata-modules-5.10.0-14-686-di | 5.10.113-1 | i386
sata-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
sata-modules-5.10.0-15-686-di | 5.10.120-1 | i386
sata-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
scsi-core-modules-5.10.0-10-686-di |  5.10.84-1 | i386
scsi-core-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
scsi-core-modules-5.10.0-14-686-di | 5.10.113-1 | i386
scsi-core-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
scsi-core-modules-5.10.0-15-686-di | 5.10.120-1 | i386
scsi-core-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
scsi-modules-5.10.0-10-686-di |  5.10.84-1 | i386
scsi-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
scsi-modules-5.10.0-14-686-di | 5.10.113-1 | i386
scsi-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
scsi-modules-5.10.0-15-686-di | 5.10.120-1 | i386
scsi-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
scsi-nic-modules-5.10.0-10-686-di |  5.10.84-1 | i386
scsi-nic-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
scsi-nic-modules-5.10.0-14-686-di | 5.10.113-1 | i386
scsi-nic-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
scsi-nic-modules-5.10.0-15-686-di | 5.10.120-1 | i386
scsi-nic-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
serial-modules-5.10.0-10-686-di |  5.10.84-1 | i386
serial-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
serial-modules-5.10.0-14-686-di | 5.10.113-1 | i386
serial-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
serial-modules-5.10.0-15-686-di | 5.10.120-1 | i386
serial-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
sound-modules-5.10.0-10-686-di |  5.10.84-1 | i386
sound-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
sound-modules-5.10.0-14-686-di | 5.10.113-1 | i386
sound-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
sound-modules-5.10.0-15-686-di | 5.10.120-1 | i386
sound-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
speakup-modules-5.10.0-10-686-di |  5.10.84-1 | i386
speakup-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
speakup-modules-5.10.0-14-686-di | 5.10.113-1 | i386
speakup-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
speakup-modules-5.10.0-15-686-di | 5.10.120-1 | i386
speakup-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
squashfs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
squashfs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
squashfs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
squashfs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
squashfs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
squashfs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
udf-modules-5.10.0-10-686-di |  5.10.84-1 | i386
udf-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
udf-modules-5.10.0-14-686-di | 5.10.113-1 | i386
udf-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
udf-modules-5.10.0-15-686-di | 5.10.120-1 | i386
udf-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
uinput-modules-5.10.0-10-686-di |  5.10.84-1 | i386
uinput-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
uinput-modules-5.10.0-14-686-di | 5.10.113-1 | i386
uinput-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
uinput-modules-5.10.0-15-686-di | 5.10.120-1 | i386
uinput-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
usb-modules-5.10.0-10-686-di |  5.10.84-1 | i386
usb-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
usb-modules-5.10.0-14-686-di | 5.10.113-1 | i386
usb-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
usb-modules-5.10.0-15-686-di | 5.10.120-1 | i386
usb-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
usb-serial-modules-5.10.0-10-686-di |  5.10.84-1 | i386
usb-serial-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
usb-serial-modules-5.10.0-14-686-di | 5.10.113-1 | i386
usb-serial-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
usb-serial-modules-5.10.0-15-686-di | 5.10.120-1 | i386
usb-serial-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
usb-storage-modules-5.10.0-10-686-di |  5.10.84-1 | i386
usb-storage-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
usb-storage-modules-5.10.0-14-686-di | 5.10.113-1 | i386
usb-storage-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
usb-storage-modules-5.10.0-15-686-di | 5.10.120-1 | i386
usb-storage-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386
xfs-modules-5.10.0-10-686-di |  5.10.84-1 | i386
xfs-modules-5.10.0-10-686-pae-di |  5.10.84-1 | i386
xfs-modules-5.10.0-14-686-di | 5.10.113-1 | i386
xfs-modules-5.10.0-14-686-pae-di | 5.10.113-1 | i386
xfs-modules-5.10.0-15-686-di | 5.10.120-1 | i386
xfs-modules-5.10.0-15-686-pae-di | 5.10.120-1 | i386

------------------- Reason -------------------
[auto-cruft] no longer built by src:linux-signed-i386
----------------------------------------------
=========================================================================
apache2 (2.4.54-1~deb11u1) bullseye; urgency=medium
 .
   [ Yadd ]
   * Fix htcacheclean doc (Closes: #1010455)
 .
   [ Yadd ]
   * New upstream version 2.4.54 (closes: #1012513, CVE-2022-31813,
     CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404,
     CVE-2022-30522, CVE-2022-30556, CVE-2022-28330)
apache2 (2.4.53-2) unstable; urgency=medium
 .
   * Clean useless Conflicts/Replace
   * apache2-dev: add missing dependency on libpcre2-dev (Closes: #1007254)
apache2 (2.4.53-2~bpo10+1) buster-backports-sloppy; urgency=medium
 .
   * Rebuild for buster-backports.
apache2 (2.4.53-1) unstable; urgency=medium
 .
   * New upstream version 2.4.53 (Closes: CVE-2022-22719,
     CVE-2022-22720, CVE-2022-22721, CVE-2022-23943)
   * Update copyright
   * Patches:
     + Drop fix-2.4.52-regression.patch, now included in upstream
     + Refresh fhs_compliance.patch
     + Update and disable child_processes_fail_to_start.patch
   * Update test framework
   * Back to unstable

asterisk (1:16.16.1~dfsg-1+deb11u1) bullseye-security; urgency=medium
 .
   * CVE-2021-32558 / AST-2021-008 (Closes: #991710)
     If the IAX2 channel driver receives a packet that contains an unsupported
     media format it can cause a crash to occur in Asterisk
   * CVE-2021-32686 / AST-2021-009 (Closes: #991931)
     pjproject/pjsip: crash when SSL socket destroyed during handshake
   * d/gbp.conf for Bullseye branch
asterisk (1:16.16.1~dfsg-1+deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.

base-files (11.1+deb11u4) bullseye; urgency=medium
 .
   * Change /etc/debian_version to 11.4, for Debian 11.4 point release.

bash (5.1-2+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * 1-byte buffer overflow read in subst.c read_comsub (Closes: #1003012)

chromium (103.0.5060.53-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2022-2156: Use after free in Base.
       Reported by Mark Brand of Google Project Zero
     - CVE-2022-2157: Use after free in Interest groups. Reported by
       Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-2158: Type Confusion in V8. Reported by
       Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab
     - CVE-2022-2160: Insufficient policy enforcement in DevTools.
       Reported by David Erceg
     - CVE-2022-2161: Use after free in WebApp Provider.
       Reported by Zhihua Yao of KunLun Lab
     - CVE-2022-2162: Insufficient policy enforcement in File System API.
       Reported by Abdelhamid Naceri (halov)
     - CVE-2022-2163: Use after free in Cast UI and Toolbar.
       Reported by Chaoyuan Peng (@ret2happy)
     - CVE-2022-2164: Inappropriate implementation in Extensions API.
       Reported by José Miguel Moreno Computer Security Lab (COSEC) at UC3M
     - CVE-2022-2165: Insufficient data validation in URL formatting.
       Reported by Rayyan Bijoora
   * debian/patches:
     - upstream/dawn-version-fix.patch: drop merged upstream.
     - upstream/blink-ftbfs.patch: drop, merged upstream.
     - upstream/libxml.patch: drop, merged upstream.
     - upstream/nested-nested-nested-nested-nested-nested-regex-patterns.patch:
       drop, merged upstream.
     - upstream/byteswap-constexpr.patch: drop, merged upstream.
     - bullseye/byteswap-constexpr2.patch: sys_byteswap.h moved directories.
     - disable/angle-perftests.patch: simple refresh.
     - disable/catapult.patch: simple refresh.
     - bullseye/clang11.patch: minor update for some code dropped upstream.
     - system/openjpeg.patch: update for libopenjp2-7-dev's 2.4 -> 2.5 path
       change.
chromium (102.0.5005.115-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2022-2007: Use after free in WebGPU. Reported by David Manouchehri
     - CVE-2022-2008: Out of bounds memory access in WebGL.
       Reported by khangkito - Tran Van Khang (VinCSS)
     - CVE-2022-2010: Out of bounds read in compositing.
       Reported by Mark Brand of Google Project Zero
     - CVE-2022-2011: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
   * debian/patches:
     - bullseye/byteswap-constexpr2.patch - additional fix for bullseye
       builds on 32-bit platforms (closes: #1011096).
     - debianization/support-i386.patch - re-enable support for i386 builds.
       Upstream no longer officially supports i386 builds on linux, so we
       are on our own here.
chromium (102.0.5005.115-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2022-2007: Use after free in WebGPU. Reported by David Manouchehri
     - CVE-2022-2008: Out of bounds memory access in WebGL.
       Reported by khangkito - Tran Van Khang (VinCSS)
     - CVE-2022-2010: Out of bounds read in compositing.
       Reported by Mark Brand of Google Project Zero
     - CVE-2022-2011: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
   * debian/patches:
     - bullseye/byteswap-constexpr2.patch - additional fix for bullseye
       builds on 32-bit platforms (closes: #1011096).
     - debianization/support-i386.patch - re-enable support for i386 builds.
       Upstream no longer officially supports i386 builds on linux, so we
       are on our own here.
chromium (102.0.5005.61-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2022-1853: Use after free in Indexed DB. Reported by Anonymous
     - CVE-2022-1854: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1855: Use after free in Messaging. Reported by Anonymous
     - CVE-2022-1856: Use after free in User Education. Reported by
       Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1857: Insufficient policy enforcement in File System API.
       Reported by Daniel Rhea
     - CVE-2022-1858: Out of bounds read in DevTools. Reported by EllisVlad
     - CVE-2022-1859: Use after free in Performance Manager. Reported by
       Guannan Wang (@Keenan7310) of Tencent Security Xuanwu Lab
     - CVE-2022-1860: Use after free in UI Foundations.
       Reported by @ginggilBesel
     - CVE-2022-1861: Use after free in Sharing. Reported by Khalil Zhani
     - CVE-2022-1862: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz
     - CVE-2022-1863: Use after free in Tab Groups. Reported by David Erceg
     - CVE-2022-1864: Use after free in WebApp Installs.
       Reported by Yuntao You (@GraVity0) of Bytedance Wuheng Lab
     - CVE-2022-1865: Use after free in Bookmarks.
       Reported by Rong Jian of VRI
     - CVE-2022-1866: Use after free in Tablet Mode.
       Reported by @ginggilBesel
     - CVE-2022-1867: Insufficient validation of untrusted input in
       Data Transfer. Reported by Michał Bentkowski of Securitum
     - CVE-2022-1868: Inappropriate implementation in Extensions API.
       Reported by Alesandro Ortiz
     - CVE-2022-1869: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab
     - CVE-2022-1870: Use after free in App Service. Reported by
       Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1871: Insufficient policy enforcement in File System API.
       Reported by Thomas Orlita
     - CVE-2022-1872: Insufficient policy enforcement in Extensions API.
       Reported by ChaobinZhang
     - CVE-2022-1873: Insufficient policy enforcement in COOP.
       Reported by NDevTK
     - CVE-2022-1874: Insufficient policy enforcement in Safe Browsing.
       Reported by hjy79425575
     - CVE-2022-1875: Inappropriate implementation in PDF. Reported by NDevTK
     - CVE-2022-1876: Heap buffer overflow in DevTools.
       Reported by @ginggilBesel
   * debian/patches:
     - system/jpeg.patch - straight refresh.
     - disable/swiftshader.patch - straight refresh.
     - disable/swiftshader-2.patch - refresh for upstream dropping of legacy
       swiftshader GL stuff; they now use ANGLE.
     - disable/angle-perftests.patch - refresh.
     - system/jsoncpp.patch - refresh for jsoncpp_no_deprecated_declarations
       argument change.
     - bullseye/clang11.patch - merge cast-call.patch into it, as well as
       dropping additional unsupported clang arguments.
     - bullseye/cast-call.patch - drop.
     - upstream/dawn-version-fix.patch - add patch to deal w/ FTBFS.
     - upstream/blink-ftbfs.patch - another FTBFS patch.
     - upstream/nested-nested-nested-nested-nested-nested-regex-patterns.patch -
       fix a build failure that only happens with clang + GNU's libstdc++.
     - upstream/byteswap-constexpr.patch - add this to fix bullsye builds on
       32-bit platforms (closes: #1011096).
   * Don't build unneccessary dawn build tests.
chromium (102.0.5005.61-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2022-1853: Use after free in Indexed DB. Reported by Anonymous
     - CVE-2022-1854: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1855: Use after free in Messaging. Reported by Anonymous
     - CVE-2022-1856: Use after free in User Education. Reported by
       Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1857: Insufficient policy enforcement in File System API.
       Reported by Daniel Rhea
     - CVE-2022-1858: Out of bounds read in DevTools. Reported by EllisVlad
     - CVE-2022-1859: Use after free in Performance Manager. Reported by
       Guannan Wang (@Keenan7310) of Tencent Security Xuanwu Lab
     - CVE-2022-1860: Use after free in UI Foundations.
       Reported by @ginggilBesel
     - CVE-2022-1861: Use after free in Sharing. Reported by Khalil Zhani
     - CVE-2022-1862: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz
     - CVE-2022-1863: Use after free in Tab Groups. Reported by David Erceg
     - CVE-2022-1864: Use after free in WebApp Installs.
       Reported by Yuntao You (@GraVity0) of Bytedance Wuheng Lab
     - CVE-2022-1865: Use after free in Bookmarks.
       Reported by Rong Jian of VRI
     - CVE-2022-1866: Use after free in Tablet Mode.
       Reported by @ginggilBesel
     - CVE-2022-1867: Insufficient validation of untrusted input in
       Data Transfer. Reported by Michał Bentkowski of Securitum
     - CVE-2022-1868: Inappropriate implementation in Extensions API.
       Reported by Alesandro Ortiz
     - CVE-2022-1869: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab
     - CVE-2022-1870: Use after free in App Service. Reported by
       Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1871: Insufficient policy enforcement in File System API.
       Reported by Thomas Orlita
     - CVE-2022-1872: Insufficient policy enforcement in Extensions API.
       Reported by ChaobinZhang
     - CVE-2022-1873: Insufficient policy enforcement in COOP.
       Reported by NDevTK
     - CVE-2022-1874: Insufficient policy enforcement in Safe Browsing.
       Reported by hjy79425575
     - CVE-2022-1875: Inappropriate implementation in PDF. Reported by NDevTK
     - CVE-2022-1876: Heap buffer overflow in DevTools.
       Reported by @ginggilBesel
   * debian/patches:
     - system/jpeg.patch - straight refresh.
     - disable/swiftshader.patch - straight refresh.
     - disable/swiftshader-2.patch - refresh for upstream dropping of legacy
       swiftshader GL stuff; they now use ANGLE.
     - disable/angle-perftests.patch - refresh.
     - system/jsoncpp.patch - refresh for jsoncpp_no_deprecated_declarations
       argument change.
     - bullseye/clang11.patch - merge cast-call.patch into it, as well as
       dropping additional unsupported clang arguments.
     - bullseye/cast-call.patch - drop.
     - upstream/dawn-version-fix.patch - add patch to deal w/ FTBFS.
     - upstream/blink-ftbfs.patch - another FTBFS patch.
     - upstream/nested-nested-nested-nested-nested-nested-regex-patterns.patch -
       fix a build failure that only happens with clang + GNU's libstdc++.
     - upstream/byteswap-constexpr.patch - add this to fix bullsye builds on
       32-bit platforms (closes: #1011096).
   * Don't build unneccessary dawn build tests.
chromium (101.0.4951.64-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1633: Use after free in Sharesheet. Reported by Khalil Zhani
     - CVE-2022-1634: Use after free in Browser UI. Reported by Khalil Zhani
     - CVE-2022-1635: Use after free in Permission Prompts.
       Reported by Anonymous
     - CVE-2022-1636: Use after free in Performance APIs.
       Reported by Seth Brenith, Microsoft
     - CVE-2022-1637: Inappropriate implementation in Web Contents.
       Reported by Alesandro Ortiz
     - CVE-2022-1638: Heap buffer overflow in V8 Internationalization.
       Reported by DoHyun Lee (@l33d0hyun) of DNSLab, Korea University
     - CVE-2022-1639: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1640: Use after free in Sharing. Reported by Weipeng
       Jiang (@Krace) and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1641: Use after free in Web UI Diagnostics.
       Reported by Rong Jian of VRI
chromium (101.0.4951.64-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1633: Use after free in Sharesheet. Reported by Khalil Zhani
     - CVE-2022-1634: Use after free in Browser UI. Reported by Khalil Zhani
     - CVE-2022-1635: Use after free in Permission Prompts.
       Reported by Anonymous
     - CVE-2022-1636: Use after free in Performance APIs.
       Reported by Seth Brenith, Microsoft
     - CVE-2022-1637: Inappropriate implementation in Web Contents.
       Reported by Alesandro Ortiz
     - CVE-2022-1638: Heap buffer overflow in V8 Internationalization.
       Reported by DoHyun Lee (@l33d0hyun) of DNSLab, Korea University
     - CVE-2022-1639: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1640: Use after free in Sharing. Reported by Weipeng
       Jiang (@Krace) and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1641: Use after free in Web UI Diagnostics.
       Reported by Rong Jian of VRI
 .
 chromium (101.0.4951.54-1) unstable; urgency=low
 .
   * Depend on sse3-support to ensure that chromium is only installed on
     machines that support the SSE3 instruction set. Otherwise we crash,
     as described in #1010407. We can also remove the manual sse2 check now.
     Upstream describes the SSE3 requirement @ http://crbug.com/1123353
   * New upstream stable release.
chromium (101.0.4951.54-1) unstable; urgency=low
 .
   * Depend on sse3-support to ensure that chromium is only installed on
     machines that support the SSE3 instruction set. Otherwise we crash,
     as described in #1010407. We can also remove the manual sse2 check now.
     Upstream describes the SSE3 requirement @ http://crbug.com/1123353
   * New upstream stable release.
chromium (101.0.4951.41-2) unstable; urgency=high
 .
   * No changes, just the CVE list. The original blog post *did not*
     have CVEs.  >:(
     - CVE-2022-1477: Use after free in Vulkan.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1478: Use after free in SwiftShader.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1479: Use after free in ANGLE.
       Reported by Jeonghoon Shin of Theori
     - CVE-2022-1480: Use after free in Device API. Reported by @uwu7586
     - CVE-2022-1481: Use after free in Sharing. Reported by Weipeng Jiang
       (@Krace) and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1482: Inappropriate implementation in WebGL.
       Reported by Christoph Diehl, Microsoft
     - CVE-2022-1483: Heap buffer overflow in WebGPU.
       Reported by Mark Brand of Google Project Zero
     - CVE-2022-1484: Heap buffer overflow in Web UI Settings.
       Reported by Chaoyuan Peng (@ret2happy)
     - CVE-2022-1485: Use after free in File System API.
     - CVE-2022-1486: Type Confusion in V8. Reported by Brendon Tiszka
     - CVE-2022-1487: Use after free in Ozone. Reported by Sri
     - CVE-2022-1488: Inappropriate implementation in Extensions API.
       Reported by Thomas Beverley from Wavebox.io
     - CVE-2022-1489: Out of bounds memory access in UI Shelf.
       Reported by Khalil Zhani
     - CVE-2022-1490: Use after free in Browser Switcher.
       Reported by raven at KunLun lab
     - CVE-2022-1491: Use after free in Bookmarks.
       Reported by raven at KunLun lab
     - CVE-2022-1492: Insufficient data validation in Blink Editing.
       Reported by Michał Bentkowski of Securitum
     - CVE-2022-1493: Use after free in Dev Tools.
       Reported by Zhihua Yao of KunLun Lab
     - CVE-2022-1494: Insufficient data validation in Trusted Types.
       Reported by Masato Kinugawa
     - CVE-2022-1495: Incorrect security UI in Downloads.
       Reported by Umar Farooq
     - CVE-2022-1496: Use after free in File Manager. Reported by Zhiyi
       Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group
     - CVE-2022-1497: Inappropriate implementation in Input. Reported by
       Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research
     - CVE-2022-1498: Inappropriate implementation in HTML Parser.
       Reported by SeungJu Oh (@real_as3617)
     - CVE-2022-1499: Inappropriate implementation in WebAuthentication.
       Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research
     - CVE-2022-1500: Insufficient data validation in Dev Tools.
       Reported by Hoang Nguyen
     - CVE-2022-1501: Inappropriate implementation in iframe.
       Reported by Oriol Brufau
chromium (101.0.4951.41-1) unstable; urgency=low
 .
   * New upstream stable release.
   * debian/copyright:
     - Delete a bunch of file exclusion lines that no longer exist. That
       png file workaround also goes away.
     - Add a line to delete a prebuilt apache server & related modules that
       upstream now includes for some reason?
   * debian/patches:
     - upstream/rvo-workaround.patch - drop, merged upstream.
     - disable/android.patch - drop part of it that upstream fixed.
     - disable/swiftshader.patch - refresh.
     - upstream/libxml.patch - add fix for upstream bug related to
       building against the system libxml.
     - bullseye/cast-call.patch - add a patch to silence unsupported
       flag warnings in clang <= 13.
chromium (101.0.4951.41-1~deb11u1) bullseye-security; urgency=high
 .
   * debian/copyright:
     - Delete a bunch of file exclusion lines that no longer exist. That
       png file workaround also goes away.
     - Add a line to delete a prebuilt apache server & related modules that
       upstream now includes for some reason?
   * debian/patches:
     - upstream/rvo-workaround.patch - drop, merged upstream.
     - disable/android.patch - drop part of it that upstream fixed.
     - disable/swiftshader.patch - refresh.
     - upstream/libxml.patch - add fix for upstream bug related to
       building against the system libxml.
     - bullseye/cast-call.patch - add a patch to silence unsupported
       flag warnings in clang <= 13.
   * New upstream stable release.
     - CVE-2022-1477: Use after free in Vulkan.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1478: Use after free in SwiftShader.
       Reported by SeongHwan Park (SeHwa)
     - CVE-2022-1479: Use after free in ANGLE.
       Reported by Jeonghoon Shin of Theori
     - CVE-2022-1480: Use after free in Device API. Reported by @uwu7586
     - CVE-2022-1481: Use after free in Sharing. Reported by Weipeng Jiang
       (@Krace) and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1482: Inappropriate implementation in WebGL.
       Reported by Christoph Diehl, Microsoft
     - CVE-2022-1483: Heap buffer overflow in WebGPU.
       Reported by Mark Brand of Google Project Zero
     - CVE-2022-1484: Heap buffer overflow in Web UI Settings.
       Reported by Chaoyuan Peng (@ret2happy)
     - CVE-2022-1485: Use after free in File System API.
     - CVE-2022-1486: Type Confusion in V8. Reported by Brendon Tiszka
     - CVE-2022-1487: Use after free in Ozone. Reported by Sri
     - CVE-2022-1488: Inappropriate implementation in Extensions API.
       Reported by Thomas Beverley from Wavebox.io
     - CVE-2022-1489: Out of bounds memory access in UI Shelf.
       Reported by Khalil Zhani
     - CVE-2022-1490: Use after free in Browser Switcher.
       Reported by raven at KunLun lab
     - CVE-2022-1491: Use after free in Bookmarks.
       Reported by raven at KunLun lab
     - CVE-2022-1492: Insufficient data validation in Blink Editing.
       Reported by Michał Bentkowski of Securitum
     - CVE-2022-1493: Use after free in Dev Tools.
       Reported by Zhihua Yao of KunLun Lab
     - CVE-2022-1494: Insufficient data validation in Trusted Types.
       Reported by Masato Kinugawa
     - CVE-2022-1495: Incorrect security UI in Downloads.
       Reported by Umar Farooq
     - CVE-2022-1496: Use after free in File Manager. Reported by Zhiyi
       Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group
     - CVE-2022-1497: Inappropriate implementation in Input. Reported by
       Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research
     - CVE-2022-1498: Inappropriate implementation in HTML Parser.
       Reported by SeungJu Oh (@real_as3617)
     - CVE-2022-1499: Inappropriate implementation in WebAuthentication.
       Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research
     - CVE-2022-1500: Insufficient data validation in Dev Tools.
       Reported by Hoang Nguyen
     - CVE-2022-1501: Inappropriate implementation in iframe.
       Reported by Oriol Brufau
chromium (100.0.4896.127-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1364: Type Confusion in V8.
       Reported by Clément Lecigne of Google's Threat Analysis Group
chromium (100.0.4896.127-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1364: Type Confusion in V8.
       Reported by Clément Lecigne of Google's Threat Analysis Group
chromium (100.0.4896.88-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1305: Use after free in storage. Reported by Anonymous
     - CVE-2022-1306: Inappropriate implementation in compositing.
       Reported by Sven Dysthe
     - CVE-2022-1307: Inappropriate implementation in full screen.
       Reported by Irvan Kurniawan (sourc7)
     - CVE-2022-1308: Use after free in BFCache.
       Reported by Samet Bekmezci @sametbekmezci
     - CVE-2022-1309: Insufficient policy enforcement in developer tools.
       Reported by David Erceg
     - CVE-2022-1310: Use after free in regular expressions.
       Reported by Brendon Tiszka
     - CVE-2022-1311: Use after free in Chrome OS shell.
       Reported by Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1312: Use after free in storage. Reported by
       Leecraso and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1313: Use after free in tab groups. Reported by Thomas Orlita
     - CVE-2022-1314: Type Confusion in V8.
       Reported by Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab
chromium (100.0.4896.88-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2022-1305: Use after free in storage. Reported by Anonymous
     - CVE-2022-1306: Inappropriate implementation in compositing.
       Reported by Sven Dysthe
     - CVE-2022-1307: Inappropriate implementation in full screen.
       Reported by Irvan Kurniawan (sourc7)
     - CVE-2022-1308: Use after free in BFCache.
       Reported by Samet Bekmezci @sametbekmezci
     - CVE-2022-1309: Insufficient policy enforcement in developer tools.
       Reported by David Erceg
     - CVE-2022-1310: Use after free in regular expressions.
       Reported by Brendon Tiszka
     - CVE-2022-1311: Use after free in Chrome OS shell.
       Reported by Nan Wang(@eternalsakura13) and Guang Gong of 360 Alpha Lab
     - CVE-2022-1312: Use after free in storage. Reported by
       Leecraso and Guang Gong of 360 Vulnerability Research Institute
     - CVE-2022-1313: Use after free in tab groups. Reported by Thomas Orlita
     - CVE-2022-1314: Type Confusion in V8.
       Reported by Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab
chromium (100.0.4896.75-1) unstable; urgency=high
 .
   * debian/copyright:
     - Stop dropping third_party/zlib/contrib/, which is just source code
       with acceptable licenses.
     - Replace the rule that dropped third_party/depot_tools with a more
       specific rule that drops just the ninja binaries. Also delete some
       unused png files to work around a bug in our scripts.
     - Replace a rule that dropped third_party/devtools-frontend/src/test
       with just dropping all wasm files ('*.wasm'), as well as
       third_party/devtools-frontend/src/test/screenshots/image_diff/.
   * debian/patches:
     - upstream/rvo-workaround.patch - added to fix FTBFS w/ clang-11. Pulled
       from upstream git.
     - disable/swiftshader-2.patch - drop most of it that's wrapped in a
       check for windows.
     - disable/fuzzers.patch - drop it; with the last release modifying
       fuzzer inclusion, we can now configure the build without this.
     - disable/owners.patch - drop it; no longer needed with depot_tools
       remaining in the source tree.
     - disable/devtools-unittests.patch - drop it; no longer needed if
       we keep third_party/devtools-frontend/src/test in the source tree.
     - disable/tests.patch - drop half of it; the media/gpu changes aren't
       needed, while keeping stuff in third_party/devtools-frontend/src/test
       from building is still necessary.
   * Drop enable_nacl_nonsfi=false from debian/rules, as upstream got rid
     of the variable.
   * New upstream security release.
     - CVE-2022-1232: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
chromium (100.0.4896.75-1~deb11u1) bullseye-security; urgency=high
 .
   * debian/copyright:
     - Stop dropping third_party/zlib/contrib/, which is just source code
       with acceptable licenses.
     - Replace the rule that dropped third_party/depot_tools with a more
       specific rule that drops just the ninja binaries. Also delete some
       unused png files to work around a bug in our scripts.
     - Replace a rule that dropped third_party/devtools-frontend/src/test
       with just dropping all wasm files ('*.wasm'), as well as
       third_party/devtools-frontend/src/test/screenshots/image_diff/.
   * debian/patches:
     - disable/swiftshader-2.patch - drop most of it that's wrapped in a
       check for windows.
     - disable/fuzzers.patch - drop it; with the last release modifying
       fuzzer inclusion, we can now configure the build without this.
     - disable/owners.patch - drop it; no longer needed with depot_tools
       remaining in the source tree.
     - disable/devtools-unittests.patch - drop it; no longer needed if
       we keep third_party/devtools-frontend/src/test in the source tree.
     - disable/tests.patch - drop half of it; the media/gpu changes aren't
       needed, while keeping stuff in third_party/devtools-frontend/src/test
       from building is still necessary.
   * Drop enable_nacl_nonsfi=false from debian/rules, as upstream got rid
     of the variable.
   * New upstream security release.
     - CVE-2022-1232: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
chromium (100.0.4896.60-1) unstable; urgency=high
 .
   * Fix debian/watch to find the correct upstream version.
   * Ensure xz uses all available cpu cores when preparing orig.tar.gz
   * Switch to bundled ICU, since Debian's ICU is 2 years old at this point
     and upstream depends on a bunch of new API in ICU 69.1.
   * debian/copyright:
     - ensure all *.dlls are dropped from source.
     - Stop dropping '*fuzz' directories. It was too aggressive, resulting
       in build errors for perfectly fine BSD-3-clause and similar code.
     - Instead, drop '*corpus' and '*corpora' directories. Some of it is
       fine (lots generated by oss-fuzz with .dict files provided), but
       not all of it is and it's easier to just drop it.
     - Drop an esbuild binary.
     - The full upstream tarball includes additional stuff we don't want,
       so drop *.jar, tools/win, and some other stuff in third_party/.
   * debian/rules:
     - Disabling & deleting swiftshader now also needs to add
       dawn_use_swiftshader=false.
     - Switch from -lite upstream tarball to the full tarball in order to
       include ICU sources.
   * debian/patches:
     - upstream/libdrm.patch - drop, merged upstream.
     - debianization/manpage.patch - drop a small chunk merged upstream.
     - system/icu.patch - drop now that we're bundling ICU.
     - bullseye/icu-types.patch - drop now that we're bundling ICU.
     - system/convertutf.patch - update build for bundled ICU path.
     - fixes/closure.patch - drop now that we're no longer using lite tarball.
     - disable/driver-chrome-path.patch - refresh for BUILDFLAG() macro.
     - system/jsoncpp.patch - refresh for unrelated ios change.
     - disable/catapult.patch - refresh due to moving around of .pak files.
   * New upstream stable release.
     - CVE-2022-1125: Use after free in Portals. Reported by Khalil Zhani
     - CVE-2022-1127: Use after free in QR Code Generator.
       Reported by anonymous
     - CVE-2022-1128: Inappropriate implementation in Web Share API.
       Reported by Abdel Adim (@smaury92) Oisfi of Shielder
     - CVE-2022-1129: Inappropriate implementation in Full Screen Mode.
       Reported by Irvan Kurniawan (sourc7)
     - CVE-2022-1130: Insufficient validation of untrusted input in WebOTP.
       Reported by Sergey Toshin of Oversecurity Inc.
     - CVE-2022-1131: Use after free in Cast UI. Reported by
       Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research
     - CVE-2022-1132: Inappropriate implementation in Virtual Keyboard.
       Reported by Andr.Ess
     - CVE-2022-1133: Use after free in WebRTC. Reported by Anonymous
     - CVE-2022-1134: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab
     - CVE-2022-1135: Use after free in Shopping Cart.
       Reported by Wei Yuan of MoyunSec VLab
     - CVE-2022-1136: Use after free in Tab Strip . Reported by Krace
     - CVE-2022-1137: Inappropriate implementation in Extensions.
       Reported by Thomas Orlita
     - CVE-2022-1138: Inappropriate implementation in Web Cursor.
       Reported by Alesandro Ortiz
     - CVE-2022-1139: Inappropriate implementation in Background Fetch API.
       Reported by Maurice Dauer
     - CVE-2022-1141: Use after free in File Manager.
       Reported by raven at KunLun lab
     - CVE-2022-1142: Heap buffer overflow in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1143: Heap buffer overflow in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1144: Use after free in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1145: Use after free in Extensions.
       Reported by Yakun Zhang of Baidu Security
     - CVE-2022-1146: Inappropriate implementation in Resource Timing.
       Reported by Sohom Datta
chromium (100.0.4896.60-1~deb11u1) bullseye-security; urgency=high
 .
   * Fix debian/watch to find the correct upstream version.
   * Ensure xz uses all available cpu cores when preparing orig.tar.gz
   * Switch to bundled ICU, since Debian's ICU is 2 years old at this point
     and upstream depends on a bunch of new API in ICU 69.1.
   * debian/copyright:
     - ensure all *.dlls are dropped from source.
     - Stop dropping '*fuzz' directories. It was too aggressive, resulting
       in build errors for perfectly fine BSD-3-clause and similar code.
     - Instead, drop '*corpus' and '*corpora' directories. Some of it is
       fine (lots generated by oss-fuzz with .dict files provided), but
       not all of it is and it's easier to just drop it.
     - Drop an esbuild binary.
     - The full upstream tarball includes additional stuff we don't want,
       so drop *.jar, tools/win, and some other stuff in third_party/.
   * debian/rules:
     - Disabling & deleting swiftshader now also needs to add
       dawn_use_swiftshader=false.
     - Switch from -lite upstream tarball to the full tarball in order to
       include ICU sources.
   * debian/patches:
     - upstream/libdrm.patch - drop, merged upstream.
     - debianization/manpage.patch - drop a small chunk merged upstream.
     - system/icu.patch - drop now that we're bundling ICU.
     - bullseye/icu-types.patch - drop now that we're bundling ICU.
     - system/convertutf.patch - update build for bundled ICU path.
     - fixes/closure.patch - drop now that we're no longer using lite tarball.
     - disable/driver-chrome-path.patch - refresh for BUILDFLAG() macro.
     - system/jsoncpp.patch - refresh for unrelated ios change.
     - disable/catapult.patch - refresh due to moving around of .pak files.
     - upstream/rvo-workaround.patch - added to fix FTBFS w/ clang-11. Pulled
       from upstream git.
   * New upstream stable release.
     - CVE-2022-1125: Use after free in Portals. Reported by Khalil Zhani
     - CVE-2022-1127: Use after free in QR Code Generator.
       Reported by anonymous
     - CVE-2022-1128: Inappropriate implementation in Web Share API.
       Reported by Abdel Adim (@smaury92) Oisfi of Shielder
     - CVE-2022-1129: Inappropriate implementation in Full Screen Mode.
       Reported by Irvan Kurniawan (sourc7)
     - CVE-2022-1130: Insufficient validation of untrusted input in WebOTP.
       Reported by Sergey Toshin of Oversecurity Inc.
     - CVE-2022-1131: Use after free in Cast UI. Reported by
       Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research
     - CVE-2022-1132: Inappropriate implementation in Virtual Keyboard.
       Reported by Andr.Ess
     - CVE-2022-1133: Use after free in WebRTC. Reported by Anonymous
     - CVE-2022-1134: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab
     - CVE-2022-1135: Use after free in Shopping Cart.
       Reported by Wei Yuan of MoyunSec VLab
     - CVE-2022-1136: Use after free in Tab Strip . Reported by Krace
     - CVE-2022-1137: Inappropriate implementation in Extensions.
       Reported by Thomas Orlita
     - CVE-2022-1138: Inappropriate implementation in Web Cursor.
       Reported by Alesandro Ortiz
     - CVE-2022-1139: Inappropriate implementation in Background Fetch API.
       Reported by Maurice Dauer
     - CVE-2022-1141: Use after free in File Manager.
       Reported by raven at KunLun lab
     - CVE-2022-1142: Heap buffer overflow in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1143: Heap buffer overflow in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1144: Use after free in WebUI.
       Reported by Leecraso and Guang Gong of 360 Alpha Lab
     - CVE-2022-1145: Use after free in Extensions.
       Reported by Yakun Zhang of Baidu Security
     - CVE-2022-1146: Inappropriate implementation in Resource Timing.
       Reported by Sohom Datta
chromium (99.0.4844.84-1) unstable; urgency=high
 .
   * New upstream security ("just *ONE* security hole, that's it?!") release.
     - CVE-2022-1096: Type Confusion in V8. Reported by anonymous.
chromium (99.0.4844.84-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security ("just *ONE* security hole, that's it?!") release.
     - CVE-2022-1096: Type Confusion in V8. Reported by anonymous.
chromium (99.0.4844.74-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2022-0971: Use after free in Blink Layout.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2022-0972: Use after free in Extensions.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2022-0973: Use after free in Safe Browsing.
       Reported by avaue and Buff3tts at S.S.L.
     - CVE-2022-0974 : Use after free in Splitscreen.
       Reported by @ginggilBesel.
     - CVE-2022-0975: Use after free in ANGLE.
       Reported by SeongHwan Park (SeHwa).
     - CVE-2022-0976: Heap buffer overflow in GPU. Reported by Omair.
     - CVE-2022-0977: Use after free in Browser UI. Reported by Khalil Zhani.
     - CVE-2022-0978: Use after free in ANGLE. Reported by Cassidy Kim of
       Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd.
     - CVE-2022-0979: Use after free in Safe Browsing. Reported by anonymous.
     - CVE-2022-0980: Use after free in New Tab Page. Reported by Krace.

cifs-utils (2:6.11-3.1+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * mount.cifs: fix length check for ip option parsing (CVE-2022-27239)
     (Closes: #1010818)
   * mount.cifs: fix verbose messages on option parsing (CVE-2022-29869)
     (Closes: #1010818)

clamav (0.103.6+dfsg-0+deb11u1) bullseye; urgency=medium
 .
   * Import 0.103.6
     - CVE-2022-20770 (Possible infinite loop vulnerability in the CHM file
       parser).
     - CVE-2022-20796 (Possible NULL-pointer dereference crash in the scan
       verdict cache check).
     - CVE-2022-20771 (Possible infinite loop vulnerability in the TIFF file
       parser).
     - CVE-2022-20785 (Possible memory leak in the HTML file parser/
       Javascript normalizer).
     - CVE-2022-20792 (Possible multi-byte heap buffer overflow write
       vulnerability in the signature database load module.
     - Update symbol file.
clamav (0.103.6+dfsg-0+deb10u1) buster; urgency=medium
 .
   * Import 0.103.6
     - CVE-2022-20770 (Possible infinite loop vulnerability in the CHM file
       parser).
     - CVE-2022-20796 (Possible NULL-pointer dereference crash in the scan
       verdict cache check).
     - CVE-2022-20771 (Possible infinite loop vulnerability in the TIFF file
       parser).
     - CVE-2022-20785 (Possible memory leak in the HTML file parser/
       Javascript normalizer).
     - CVE-2022-20792 (Possible multi-byte heap buffer overflow write
       vulnerability in the signature database load module.
     - Update symbol file.
clamav (0.103.5+dfsg-1) unstable; urgency=medium
 .
   * Import 0.103.5
    - CVE-2022-20698 (Fix for invalid pointer read that may cause a crash).
    - Update symbol file.

clementine (1.4.0~rc1+git347-gfc4cb6fc7+dfsg-1+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Add explicit Depends on libqt5sql5-sqlite (Closes: #1008312)

composer (2.0.9-2+deb11u1) bullseye; urgency=medium
 .
   * Fix code injection vulnerability [CVE-2022-24828] (Closes: #1009960)
   * Update GitHub token pattern (Closes: #989315)
   * Checkout ProcessExecutorMock.php needed for updated tests

containerd (1.4.13~ds1-1~deb11u2) bullseye-security; urgency=high
 .
   * CVE-2022-31030: CRI plugin: Host memory exhaustion through ExecSync
   * CVE-2022-24769: Default inheritable capabilities for linux container
     should be empty

cups (2.3.3op2-3+deb11u2) bullseye-security; urgency=high
 .
   * CVE-2022-26691
     Fix certificate comparison.
     (Thanks to Zdenek Dohnal <zdohnal@redhat.com> for the patch)

cyrus-imapd (3.2.6-2+deb11u2) bullseye; urgency=medium
 .
   * Ensure that ctl_cyrusdb -r and reconstruct now ensure the "uniqueid" field
     is present in and synchronised between mailboxes.db and cyrus.header.
     Required before 3.6.x upgrade

dbus-broker (26-1+deb11u1) bullseye; urgency=medium
 .
   * Backport strnspn-fix-buffer-overflow.patch to fix CVE-2022-31212
     (Closes: #1013343)

debian-edu-config (2.11.56+deb11u4) bullseye; urgency=medium
 .
   [ Wolfgang Schweer ]
   * etc/exim4/exim-ldap-server-v4.conf: Accept incoming mail from internal
     network sent to root@<mynetwork-names>. (Closes: #1003727).
   * Use mktemp instead of deprecated tempfile, adjust:
     - etc/X11/Xsession-debian-edu
     - sbin/debian-edu-update-netblock
     - share/debian-edu-config/tools/gosa-sync
     - testsuite/postoffice
     (Closes: #1005352).
 .
   [ Mike Gabriel ]
   * share/d-e-c/tools/gosa-modify-host: Only create Kerberos host and service
     principals if they don't yet exist. (Closes: #1002014).
   * share/d-e-c/tools/gosa-create-host: Fix copy+paste flaw in comment.
   * share/debian-edu-config/tools/setup-freeradius-server: Fix integer
     comparison in run-by-root check. Script was not executable fully (not even
     as root).
   * debian/debian-edu-config.fetch-ldap-cert: Drop retrieval of
     Debian-Edu_rootCA from this script. This now is the task of the
     fetch-rootca-cert script. (Closes: #971780).
   * debian/debian-edu-config.fetch-rootca-cert: Ensure proper symlinking of
     Debian-Edu_rootCA.crt in /usr/local/share/ca-certificates/ to
     Debian-Edu_rootCA.crt in /etc/ssl/ca-certificates. Forced symlinking is
     required, because earlier versions of the fetch-ldap-cert init script put
     Debian-Edu_rootCA.crt into /etc/ssl/ca-certificates/ as a file. Forced
     symlinking replaces files by the wanted symlink. The -n option (no-
     dereference) is required to make sure we don't follow any already existing
     symlink. (This relates to #971780).
   * share/debian-edu-config/tools/update-proxy-from-wpad:
     - Fix typo (wrong protocol) in APT proxy config creation.
     - Create a Debian Edu specific proxy configuration in /etc/apt/apt.conf.d/
       named 03debian-edu-config rather than meddling with /etc/apt/apt.conf
       directly. Clean up any earlier meddling from apt.conf, as well. (Closes:
       #1003560).
   * share/debian-edu-config/tools/{update-proxy-from-wpad,wpad-extra}:
     - Don't fail if proxy update is not possible, only send warnings to stderr
       and syslog. Don't source wpad-extra script, execute it instead and capture
       stdout. (Closes: #1008067).
   * sbin/update-hostname-from-ip:
     - Simply if-then-else-clauses, reduce number of exit calls, don't exit with
       non-zero exitcode. Improve syslog messages if things fail. (Closes:
       #1006604).
   * share/debian-edu-config/tools/setup-roaming: Assure libsss-sudo is installed
     on Roaming Workstation. (Closes: #1004605).
   * share/debian-edu-config/tools/gosa-remove: Capture removals of GOsa² user
     templates and ignore them. (Closes: #815042).
   * ldap-schemas/: Update schema files from Debian's latest GOsa² list of
     schemas.
   * share/debian-edu-config/tools/clean-up-host-keytabs: Don't fail
     on Kerberos principal removal.
   * etc/cups/cups-browsed-debian-edu.conf:
     - Let TJENER's print queues appear on Debian Edu clients, use same
       print queue names on clients as on TJENER. (Closes: #1005841).
   * sbin/debian-edu-pxeinstall:
     - Don't append 'ipappend 2' to the kernel boot cmdline anymore as it
       confuses systemd when booting into the installed system. This resolves
       the graphical.target not coming up on Debian Edu workstations that got
       installed via the PXE/network based Debian Installer method. (Closes:
       #1006362).
     - Silence stderr output if the artwork theme lacks a plymouth subfolder.
       This can be silently ignored and should not trouble Debian Edu admins.
   * Support krb5i on Diskless Workstations (aka LTSP FAT Clients):
     - ldap-bootstrap/netgroup.ldif: Add diskless-workstation-hosts NIS netgroup
       during LDAP bootstrap.
     - debian/debian-edu-config.{postinst,postrm}: Create non-privileged
       debian-edu system user account on Debian Edu mainserver (for distribution
       of host keytabs to diskless workstations aka LTSP fat clients).
     - share/debian-edu-config/tools/: Add update-dlw-krb5-keytabs script and
       call it (with delay) from gosa-modify-host hook script. (Closes: #613167,
       #1002018).
   * Move /etc/debian-edu/host-keytabs/* to /var/lib/debian-edu/host-keytabs/
     and replace directory /etc/debian-edu/host-keytabs by a symlink. (Closes:
     #1002019).
   * share/debian-edu-config/squid.conf:
     - Prefer DNSv4 lookups over DNSv6. Debian Edu does not yet fully support
       IPv6 and many schools still use IPv4 primarily. This gives a great
       performance boost to squid installations if IPv6 internet is not fully
       available for whatever reason. (Closes: #1006375).
   * share/debian-edu-config/tools/list-gosa-systems:
     - Drop immature list-gosa-systems script again that got sneaked in via
       upload of 2.11.56+deb11u3. We apologize for the noise.

debian-installer (20210731+deb11u4) bullseye; urgency=medium
 .
   * Reinstate some armel netboot targets, as suggested by Martin
     Michlmayr (Closes: #934072) and tested by Rick Thomas (thanks!):
      - openrd-base
      - openrd-client
      - openrd-ultimate
   * Bump Linux kernel ABI to 5.10.0-16.

debian-installer-netboot-images (20210731+deb11u4) bullseye; urgency=medium
 .
   * Update to 20210731+deb11u4, from bullseye-proposed-updates.

distro-info-data (0.51+deb11u2) bullseye; urgency=medium
 .
   * Update data to 0.53:
     - Add Ubuntu 22.10, Kinetic Kudu.

docker.io (20.10.5+dfsg1-1+deb11u2) bullseye; urgency=medium
 .
   * Order docker.service after containerd.service to fix shutdown of
     containers (Closes: #989490)
   * Explicitly pass the containerd socket path to dockerd to make sure it
     doesn't start containerd on its own.

dpdk (20.11.5-1~deb11u1) bullseye-security; urgency=high
 .
   * Upload to bullseye-security (CVE-2021-3839 and CVE-2022-0669)
 .
 dpdk (20.11.5-1) unstable; urgency=medium
 .
   * New upstream release 20.11.5; for a full list of changes see:
     http://doc.dpdk.org/guides-20.11/rel_notes/release_20_11.html
   * Drop config-ppc-fix-build-with-GCC-10.patch, merged upstream
   * librte-ethdev21.symbols: add new internal symbol
dpdk (20.11.4-2) unstable; urgency=medium
 .
   * Backport patch to fix ppc64el FTBFS

dpkg (1.20.11) bullseye; urgency=medium
 .
   [ Guillem Jover ]
   * dpkg-deb: Fix unexpected end of file conditions on .deb extract.
   * libdpkg: Do not restrict source:* virtual fields to installed packages.
     Closes: #1004372
   * Perl modules:
     - Dpkg::Source::Package::V2: Always fix the permissions for upstream
       tarballs. Closes: #1012195
   * Build system:
     - Build gitlab CI images for bullseye instead of sid.
dpkg (1.20.10) bullseye-security; urgency=medium
 .
   [ Guillem Jover ]
   * Perl modules:
     - Dpkg::Source::Archive: Prevent directory traversal for in-place extracts.
       Reported by Max Justicz <max@justi.cz>. Fixes CVE-2022-1664.
   * Localization:
     - Update Swedish translations.
       Thanks to Peter Krefting <peter@softwolves.pp.se>. Closes: #1007116
 .
   [ Update man pages translations ]
   * German (Helge Kreutzmann).

ecdsautils (0.3.2+git20151018-2+deb11u1) bullseye-security; urgency=medium
 .
   * debian/patches:
     - Add 0001-verify-fix-signature-verification-CVE-2022-24884.patch,
       Fix CVE-2022-24884: Improper Verification of ECDSA Signatures
ecdsautils (0.3.2+git20151018-2+deb10u1) buster-security; urgency=medium
 .
   * debian/patches:
     - Add 0001-verify-fix-signature-verification-CVE-2022-24884.patch,
       Fix CVE-2022-24884: Improper Verification of ECDSA Signatures

exo (4.16.0-1+deb11u1) stable-security; urgency=medium
 .
   * d/patches: 0001-exo-open-Only-execute-local-.desktop-files.patch added
     Fix CVE-2022-32278, exo allows executing .desktop files with remote URI
     scheme. (Closes: #1013129)

ffmpeg (7:4.3.4-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version 4.3.4

firefox-esr (91.11.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-25, also known as:
     CVE-2022-34479, CVE-2022-34470, CVE-2022-34468, CVE-2022-34481,
     CVE-2022-31744, CVE-2022-34472, CVE-2022-2200, CVE-2022-34484.
 .
   * build/moz.configure/bindgen.configure,
     gfx/webrender_bindings/webrender_ffi.h: Work around build failure with
     newer cbindgen. bz#1773259
firefox-esr (91.11.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-25, also known as:
     CVE-2022-34479, CVE-2022-34470, CVE-2022-34468, CVE-2022-34481,
     CVE-2022-31744, CVE-2022-34472, CVE-2022-2200, CVE-2022-34484.
 .
   * build/moz.configure/bindgen.configure,
     gfx/webrender_bindings/webrender_ffi.h: Work around build failure with
     newer cbindgen. bz#1773259
firefox-esr (91.10.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-21, also known as:
     CVE-2022-31736, CVE-2022-31737, CVE-2022-31738, CVE-2022-31740,
     CVE-2022-31741, CVE-2022-31742, CVE-2022-31747.
firefox-esr (91.10.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-21, also known as:
     CVE-2022-31736, CVE-2022-31737, CVE-2022-31738, CVE-2022-31740,
     CVE-2022-31741, CVE-2022-31742, CVE-2022-31747.
firefox-esr (91.10.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-21, also known as:
     CVE-2022-31736, CVE-2022-31737, CVE-2022-31738, CVE-2022-31740,
     CVE-2022-31741, CVE-2022-31742, CVE-2022-31747.
firefox-esr (91.9.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-19, also known as CVE-2022-1802 and CVE-2022-1529.
firefox-esr (91.9.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-19, also known as CVE-2022-1802 and CVE-2022-1529.
firefox-esr (91.9.1esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-19, also known as CVE-2022-1802 and CVE-2022-1529.
firefox-esr (91.9.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-17, also known as
     CVE-2022-29914, CVE-2022-29909, CVE-2022-29916, CVE-2022-29911,
     CVE-2022-29912, CVE-2022-29917.
firefox-esr (91.9.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-17, also known as
     CVE-2022-29914, CVE-2022-29909, CVE-2022-29916, CVE-2022-29911,
     CVE-2022-29912, CVE-2022-29917.
firefox-esr (91.9.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-17, also known as
     CVE-2022-29914, CVE-2022-29909, CVE-2022-29916, CVE-2022-29911,
     CVE-2022-29912, CVE-2022-29917.
firefox-esr (91.8.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-14, also known as
     CVE-2022-1097, CVE-2022-28281, CVE-2022-1196, CVE-2022-28282,
     CVE-2022-28285, CVE-2022-28286, CVE-2022-24713, CVE-2022-28289.
firefox-esr (91.8.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-14, also known as
     CVE-2022-1097, CVE-2022-28281, CVE-2022-1196, CVE-2022-28282,
     CVE-2022-28285, CVE-2022-28286, CVE-2022-24713, CVE-2022-28289.
firefox-esr (91.8.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-14, also known as
     CVE-2022-1097, CVE-2022-28281, CVE-2022-1196, CVE-2022-28282,
     CVE-2022-28285, CVE-2022-28286, CVE-2022-24713, CVE-2022-28289.
firefox-esr (91.7.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-11, also known as
     CVE-2022-26383, CVE-2022-26384, CVE-2022-26387, CVE-2022-26381,
     CVE-2022-26386.
firefox-esr (91.7.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-11, also known as
     CVE-2022-26383, CVE-2022-26384, CVE-2022-26387, CVE-2022-26381,
     CVE-2022-26386.
firefox-esr (91.7.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-11, also known as
     CVE-2022-26383, CVE-2022-26384, CVE-2022-26387, CVE-2022-26381,
     CVE-2022-26386.
firefox-esr (91.6.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-09, also known as CVE-2022-26485, CVE-2022-26486.
firefox-esr (91.6.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-09, also known as CVE-2022-26485, CVE-2022-26486.
firefox-esr (91.6.1esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-09, also known as CVE-2022-26485, CVE-2022-26486.
firefox-esr (91.6.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-05, also known as:
     CVE-2022-22754, CVE-2022-22756, CVE-2022-22759, CVE-2022-22760,
     CVE-2022-22761, CVE-2022-22763, CVE-2022-22764.
firefox-esr (91.6.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-05, also known as:
     CVE-2022-22754, CVE-2022-22756, CVE-2022-22759, CVE-2022-22760,
     CVE-2022-22761, CVE-2022-22763, CVE-2022-22764.
 .
   * netwerk/base/SimpleChannel.*, netwerk/base/nsBaseChannel.*,
     netwerk/protocol/res/ExtensionProtocolHandler.cpp,
     netwerk/protocol/res/PageThumbProtocolHandler.cpp,
     toolkit/components/places/nsAnnoProtocolHandler.cpp,
     dom/file/ipc/RemoteLazyInputStream.cpp: Apply upstream patches to fix
     excessive CPU usage in web extensions. bz#1706594, bz#1735899.
     Closes: #1002868.
firefox-esr (91.6.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-05, also known as:
     CVE-2022-22754, CVE-2022-22756, CVE-2022-22759, CVE-2022-22760,
     CVE-2022-22761, CVE-2022-22763, CVE-2022-22764.
 .
   * netwerk/base/SimpleChannel.*, netwerk/base/nsBaseChannel.*,
     netwerk/protocol/res/ExtensionProtocolHandler.cpp,
     netwerk/protocol/res/PageThumbProtocolHandler.cpp,
     toolkit/components/places/nsAnnoProtocolHandler.cpp,
     dom/file/ipc/RemoteLazyInputStream.cpp: Apply upstream patches to fix
     excessive CPU usage in web extensions. bz#1706594, bz#1735899.
     Closes: #1002868.
firefox-esr (91.5.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
firefox-esr (91.5.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-02, also known as:
     CVE-2022-22743, CVE-2022-22742, CVE-2022-22741, CVE-2022-22740,
     CVE-2022-22738, CVE-2022-22737, CVE-2021-4140, CVE-2022-22748,
     CVE-2022-22745, CVE-2022-22747, CVE-2022-22739, CVE-2022-22751.
 .
   * netwerk/base/SimpleChannel.*, netwerk/base/nsBaseChannel.*,
     netwerk/protocol/res/ExtensionProtocolHandler.cpp,
     netwerk/protocol/res/PageThumbProtocolHandler.cpp,
     toolkit/components/places/nsAnnoProtocolHandler.cpp,
     dom/file/ipc/RemoteLazyInputStream.cpp: Apply upstream patches to fix
     excessive CPU usage in web extensions. bz#1706594, bz#1735899.
     Closes: #1002868.
firefox-esr (91.5.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-02, also known as:
     CVE-2022-22743, CVE-2022-22742, CVE-2022-22741, CVE-2022-22740,
     CVE-2022-22738, CVE-2022-22737, CVE-2021-4140, CVE-2022-22748,
     CVE-2022-22745, CVE-2022-22747, CVE-2022-22739, CVE-2022-22751.
firefox-esr (91.5.0esr-1~deb10u1) buster-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2022-02, also known as:
     CVE-2022-22743, CVE-2022-22742, CVE-2022-22741, CVE-2022-22740,
     CVE-2022-22738, CVE-2022-22737, CVE-2021-4140, CVE-2022-22748,
     CVE-2022-22745, CVE-2022-22747, CVE-2022-22739, CVE-2022-22751.
 .
   * debian/rules: Build against embedded nspr and nss on bullseye.
   * debian/control*: Build against rustc-mozilla/cargo-mozilla on relevant
     older release.
   * debian/upstream.mk: Add definitions for newer releases of Debian.
firefox-esr (91.4.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
 .
   * debian/rules: Build against embedded nspr and nss on bullseye.
   * debian/control*: Build against rustc-mozilla/cargo-mozilla on relevant
     older release.
   * debian/upstream.mk: Add definitions for newer releases of Debian.
firefox-esr (91.4.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes cubeb deadlock. Closes: #998679.
   * Fixes for mfsa2021-53, also known as:
     CVE-2021-43536, CVE-2021-43537, CVE-2021-43538, CVE-2021-43539,
     CVE-2021-43541, CVE-2021-43542, CVE-2021-43543, CVE-2021-43545,
     CVE-2021-43546, MOZ-2021-0009.
firefox-esr (91.3.0esr-2) unstable; urgency=medium
 .
   * debian/firefox.in: Use `command -v` instead of `which`. Closes: #996455.
 .
   * modules/fdlibm/src/math_private.h: Fix FTBFS on i386. bz#1729459.
   * .cargo/config.in, Cargo.lock, Cargo.toml,
     third_party/rust/cc/.cargo-checksum.json,
     third_party/rust/cc/Cargo.toml, third_party/rust/cc/src/lib.rs,
     third_party/rust/cc/src/windows_registry.rs: Update cc crate to
     b2f6b146b75299c444e05bbde50d03705c7c4b6e, aka 1.0.71 + GCC-11 fix for
     armhf. bz#1739040.
firefox-esr (91.3.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2021-49, also known as:
     CVE-2021-38503, CVE-2021-38504, CVE-2021-38506, CVE-2021-38507,
     MOZ-2021-0008, CVE-2021-38508, CVE-2021-38509, MOZ-2021-0007.
     (MOZ-* pending CVE assignment)
firefox-esr (91.2.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2021-45, also known as:
     CVE-2021-38496, CVE-2021-38497, CVE-2021-38498, CVE-2021-32810,
     CVE-2021-38500, CVE-2021-38501.
firefox-esr (91.1.0esr-1) experimental; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2021-40, also known as CVE-2021-38495.
firefox-esr (91.0.1esr-1) experimental; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2021-37, also known as CVE-2021-29991.
 .
   * debian/import-tar.py, debian/repack.py: Fixed for python 3.9.
firefox-esr (91.0esr-1) experimental; urgency=medium
 .
   * New upstream release.

firejail (0.9.64.4-2+deb11u1) bullseye-security; urgency=medium
 .
   * Fix local root exploit reachable via --join logic. (CVE-2022-31214)
     (Closes: #1012510)

freetype (2.10.4+dfsg-1+deb11u1) bullseye; urgency=medium
 .
   * Add upstream patches to fix multiple vulnerabilities. Closes: #1010183.
     - CVE-2022-27404: heap buffer overflow via invalid integer decrement in
       sfnt_init_face() and woff2_open_font().
     - CVE-2022-27405: segmentation violation via ft_open_face_internal() when
       attempting to read the value of FT_LONG face_index.
     - CVE-2022-27406: segmentation violation via FT_Request_Size() when
       attempting to read the value of an unguarded face size handle.

fribidi (1.0.8-2+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2022-25308
     stack-buffer-overflow issue in main()
   * CVE-2022-25309
     heap-buffer-overflow issue in fribidi_cap_rtl_to_unicode()
   * CVE-2022-25310
     SEGV issue in fribidi_remove_bidi_marks()
     (Closes: #1008793)

ganeti (3.0.2-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Restore the dependency on bridge-utils to ensure that a stable update will
     not break any user scripts that might depend on brctl.
ganeti (3.0.2-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports
ganeti (3.0.1-4) unstable; urgency=medium
 .
   * Drop ganeti-3.0's dependency on bridge-utils (Ganeti 3.0 uses iproute2).
ganeti (3.0.1-3) unstable; urgency=medium
 .
   * postrm: remove diversion only on package removal (Closes: #993559)
     * Restore the diversion on postinst in case it was accidentally removed
       due to #993559.
   * Fix FTBFS by removing duplicate index entry.
     Thanks to Marius Bakke (Closes: #997053)
   * d/control: remove unnecessary B-D on libpcre3-dev (Closes: #1000040)
   * Fix FTBFS with sphinx >= 2.1.
     Thanks to Sascha Lucas

geeqie (1:1.6-9+deb11u1) bullseye; urgency=medium
 .
   * Add patch to fix Ctrl click inside of a block selection

gnupg2 (2.2.27-2+deb11u2) bullseye-security; urgency=high
 .
   * fix broken status line (Closes: #1014157)

gnutls28 (3.7.1-5+deb11u1) bullseye; urgency=medium
 .
   * 56_40-fix-SSSE3-SHA384-to-work-more-than-once.patch: Backport SSSE3 SHA384
     miscalculation fix from 3.7.3.  Closes: #1011246
   * 56_45-wrap_nettle_hash_fast-avoid-calling-_update-with-zer.patch from
     3.7.3: Fix null-pointer dereference flaw. CVE-2021-4209

golang-github-russellhaering-goxmldsig (1.1.0-1+deb11u1) bullseye; urgency=medium
 .
   * CVE-2020-7711
     null pointer dereference caused by crafted XML signatures
     (Closes: #968928)
   * according to ratt, nothing else has to be built

grunt (1.3.0-1+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Fix path traversal (Closes: #1009676, CVE-2022-0436)

gzip (1.10-4+deb11u1) bullseye-security; urgency=high
 .
   * zgrep: fix arbitrary-file-write vulnerability
     addressing CVE-2022-1271 (closes: #1009168)

hdmi2usb-mode-switch (0.0.1-2+deb11u1) bullseye; urgency=low
 .
   * Patch: Udev: Add a suffix to /dev/video device nodes to disambiguate them.
     (Closes: #1011938)
   * Move udev rules to priority 70, to come after 60-persistent-v4l.rules.

hexchat (2.14.3-6+deb11u1) bullseye; urgency=medium
 .
   * hexchat-python3: Add missing dependency on python3-cffi-backend.
     Closes: #1009877

htmldoc (1.9.11-4+deb11u3) bullseye; urgency=medium
 .
   * CVE-2022-24191
     Infinite loop in the gif_read_lzw function can lead to a
     pointer arbitrarily pointing to heap memory and resulting
     in a buffer overflow.
   * CVE-2022-27114
     Integer Overflow bugs in image.cxx, malloc function may
     return a heap block smaller than the expected size, and
     it will cause a buffer overflow/Address boundary error in
     the jpeg_read_scanlines function.
   * CVE-2022-28085
     A heap buffer overflow in the function pdf_write_names
     in ps-pdf.cxx may lead to arbitrary code execution and
     Denial of Service (DoS).

knot-resolver (5.3.1-1+deb11u1) bullseye; urgency=medium
 .
   * Fix possible assertion failure in NSEC3 edge-case (CVE-2021-40083)
     (Closes: #991463)

libapache2-mod-auth-openidc (2.4.9.4-0+deb11u1) bullseye; urgency=medium
 .
   * New upstream version 2.4.9.4
   * Fix "CVE-2021-39191" (Closes: #993648)
   * 2.4.9.2 fixed a regression regarding segfault at reload/restart
     (Closes: #883616, #891224, #868949)

libintl-perl (1.26-3+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * Install the missing gettext_xs.pm file.
     Thanks to Xan Charbonnet for the bug report.
     (Closes: #1012570)

libsdl2 (2.0.14+dfsg2-3+deb11u1) bullseye; urgency=medium
 .
   * d/gbp.conf: Set branch for Debian 11 updates
   * d/p/Always-create-a-full-256-entry-map-in-case-color-values-a.patch:
     Avoid out-of-bounds read while loading malformed BMP file.
     libsdl-org/SDL#5042 upstream, CVE-2021-33657.
   * d/p/Fixed-potential-buffer-overflow-in-YUV-conversion.patch:
     Avoid out-of-bounds read during YUV to RGB conversion.
     libsdl-org/SDL#5043 upstream, no known CVE ID.

libtgowt (0~git20210627.91d836d+dfsg-3~deb11u1) bullseye; urgency=medium
 .
   * Full update from bookworm. Needed as a dependency of telegram-desktop.
libtgowt (0~git20210627.91d836d+dfsg-3~bpo11+1) bullseye-backports; urgency=medium
 .
   * No-change rebuild for bullseye-backports.
 .
 libtgowt (0~git20210627.91d836d+dfsg-3) unstable; urgency=medium
 .
   * Upload to unstable.
   * Extend Packaged-PipeWire.patch for 0.2 version for easy backporting.
   * Bump Standards-Version to 4.6.0, no related changes.
 .
 libtgowt (0~git20210627.91d836d+dfsg-2) experimental; urgency=medium
 .
   * Automatically collect transitive dependencies.
   * New Ignore-sanitize-attr.patch.
 .
 libtgowt (0~git20210627.91d836d+dfsg-1) experimental; urgency=medium
 .
   * Update to the latest upstream commit.
   * Refine minimal CMake version, 3.16.0.
   * New build dependencies, PipeWire, Python, GLib, and X11.
   * Update get-orig-source target.
     - Repack to exclude RNNoise non-free model.
   * Update package metadata to fit the upstream code.
   * Update copyright info.
libtgowt (0~git20210627.91d836d+dfsg-3~bpo10+1) buster-backports-sloppy; urgency=medium
 .
   * Rebuild for buster-backports-sloppy.
   * Ignore a bug with type casting in PipeWire headers of 0.2.5 version.
 .
 libtgowt (0~git20210627.91d836d+dfsg-3) unstable; urgency=medium
 .
   * Upload to unstable.
   * Extend Packaged-PipeWire.patch for 0.2 version for easy backporting.
   * Bump Standards-Version to 4.6.0, no related changes.
 .
 libtgowt (0~git20210627.91d836d+dfsg-2) experimental; urgency=medium
 .
   * Automatically collect transitive dependencies.
   * New Ignore-sanitize-attr.patch.
 .
 libtgowt (0~git20210627.91d836d+dfsg-1) experimental; urgency=medium
 .
   * Update to the latest upstream commit.
   * Refine minimal CMake version, 3.16.0.
   * New build dependencies, PipeWire, Python, GLib, and X11.
   * Update get-orig-source target.
     - Repack to exclude RNNoise non-free model.
   * Update package metadata to fit the upstream code.
   * Update copyright info.
libtgowt (0~git20210627.91d836d+dfsg-2) experimental; urgency=medium
 .
   * Automatically collect transitive dependencies.
   * New Ignore-sanitize-attr.patch.
libtgowt (0~git20210627.91d836d+dfsg-1) experimental; urgency=medium
 .
   * Update to the latest upstream commit.
   * Refine minimal CMake version, 3.16.0.
   * New build dependencies, PipeWire, Python, GLib, and X11.
   * Update get-orig-source target.
     - Repack to exclude RNNoise non-free model.
   * Update package metadata to fit the upstream code.
   * Update copyright info.

libxml2 (2.9.10+dfsg-6.7+deb11u2) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix integer overflow in xmlBufferResize
   * Fix integer overflows in xmlBuf and xmlBuffer (CVE-2022-29824)
     (Closes: #1010526)

linux (5.10.127-1) bullseye; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.121
     - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop
     - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
     - ALSA: usb-audio: Cancel pending work at closing a MIDI substream
     - USB: serial: option: add Quectel BG95 modem
     - USB: new quirk for Dell Gen 2 devices
     - usb: dwc3: gadget: Move null pinter check to proper place
     - usb: core: hcd: Add support for deferring roothub registration
     - cifs: when extending a file with falloc we should make files not-sparse
     - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI
     - Fonts: Make font size unsigned in font_desc
     - [x86] MCE/AMD: Fix memory leak when threshold_create_bank() fails
     - [w86] perf/x86/intel: Fix event constraints for ICL
     - ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
     - ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
     - btrfs: add "0x" prefix for unsupported optional features
     - btrfs: repair super block num_devices automatically
     - [amd64] iommu/vt-d: Add RPLS to quirk list to skip TE disabling
     - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
     - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
     - b43legacy: Fix assigning negative value to unsigned variable
     - b43: Fix assigning negative value to unsigned variable
     - ipw2x00: Fix potential NULL dereference in libipw_xmit()
     - ipv6: fix locking issues with loops over idev->addr_list
     - fbcon: Consistently protect deferred_takeover with console_lock()
     - [x86] platform/uv: Update TSC sync state for UV5
     - ACPICA: Avoid cache flush inside virtual machines
     - drm/komeda: return early if drm_universal_plane_init() fails.
     - rcu-tasks: Fix race in schedule and flush work
     - rcu: Make TASKS_RUDE_RCU select IRQ_WORK
     - sfc: ef10: Fix assigning negative value to unsigned variable
     - ALSA: jack: Access input_dev under mutex
     - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA
       direction
     - drm/amd/pm: fix double free in si_parse_power_table()
     - ath9k: fix QCA9561 PA bias level
     - media: venus: hfi: avoid null dereference in deinit
     - media: pci: cx23885: Fix the error handling in cx23885_initdev()
     - media: cx25821: Fix the warning when removing the module
     - md/bitmap: don't set sb values if can't pass sanity check
     - mmc: jz4740: Apply DMA engine limits to maximum segment size
     - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit
     - scsi: megaraid: Fix error check return value of register_chrdev()
     - scsi: ufs: Use pm_runtime_resume_and_get() instead of
       pm_runtime_get_sync()
     - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp()
     - ath11k: disable spectral scan during spectral deinit
     - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408
     - drm/plane: Move range check for format_count earlier
     - drm/amd/pm: fix the compile warning
     - ath10k: skip ath10k_halt during suspend for driver state RESTARTING
     - [arm64] compat: Do not treat syscall number as ESR_ELx for a bad syscall
     - drm: msm: fix error check return value of irq_of_parse_and_map()
     - ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
     - net/mlx5: fs, delete the FTE when there are no rules attached to it
     - ASoC: dapm: Don't fold register value changes into notifications
     - mlxsw: spectrum_dcb: Do not warn about priority changes
     - mlxsw: Treat LLDP packets as control
     - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo
     - HID: bigben: fix slab-out-of-bounds Write in bigben_probe
     - ASoC: tscs454: Add endianness flag in snd_soc_component_driver
     - net: remove two BUG() from skb_checksum_help()
     - [s390x] preempt: disable __preempt_count_add() optimization for
       PROFILE_ALL_BRANCHES
     - perf/amd/ibs: Cascade pmu init functions' return value
     - spi: stm32-qspi: Fix wait_cmd timeout in APM mode
     - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
     - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default
     - ipmi:ssif: Check for NULL msg when handling events and messages
     - ipmi: Fix pr_fmt to avoid compilation issues
     - rtlwifi: Use pr_warn instead of WARN_ONCE
     - media: rga: fix possible memory leak in rga_probe
     - media: coda: limit frame interval enumeration to supported encoder frame
       sizes
     - media: imon: reorganize serialization
     - media: cec-adap.c: fix is_configuring state
     - nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
     - ASoC: rt5645: Fix errorenous cleanup order
     - nbd: Fix hung on disconnect request if socket is closed before
     - net: phy: micrel: Allow probing without .driver_data
     - media: exynos4-is: Fix compile warning
     - ASoC: max98357a: remove dependency on GPIOLIB
     - ASoC: rt1015p: remove dependency on GPIOLIB
     - can: mcp251xfd: silence clang's -Wunaligned-access warning
     - [x86] microcode: Add explicit CPU vendor dependency
     - rxrpc: Return an error to sendmsg if call failed
     - rxrpc, afs: Fix selection of abort codes
     - eth: tg3: silence the GCC 12 array-bounds warning
     - gfs2: use i_lock spin_lock for inode qadata
     - IB/rdmavt: add missing locks in rvt_ruc_loopback
     - [arm64] dts: qcom: msm8994: Fix BLSP[12]_DMA channels count
     - PM / devfreq: rk3399_dmc: Disable edev on remove()
     - crypto: ccree - use fine grained DMA mapping dir
     - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc
     - fs: jfs: fix possible NULL pointer dereference in dbFree()
     - [powerpc*] fadump: Fix fadump to work with a different endian capture
       kernel
     - fat: add ratelimit to fat*_ent_bread()
     - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - ARM: versatile: Add missing of_node_put in dcscb_init
     - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
     - ARM: hisi: Add missing of_node_put after of_find_compatible_node
     - PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
     - tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
     - [powerpc*] powernv/vas: Assign real address to rx_fifo in vas_rx_win_attr
     - [powerpc*] xics: fix refcount leak in icp_opal_init()
     - [powerpc*] powernv: fix missing of_node_put in uv_init()
     - macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
     - [powerpc*] iommu: Add missing of_node_put in iommu_init_early_dart
     - [amd64] RDMA/hfi1: Prevent panic when SDMA is disabled
     - drm: fix EDID struct for old ARM OABI format
     - dt-bindings: display: sitronix, st7735r: Fix backlight in example
     - ath11k: acquire ab->base_lock in unassign when finding the peer by addr
     - ath9k: fix ar9003_get_eepmisc
     - drm/edid: fix invalid EDID extension block filtering
     - drm/bridge: adv7511: clean up CEC adapter when probe fails
     - spi: qcom-qspi: Add minItems to interconnect-names
     - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
     - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
     - [x86] delay: Fix the wrong asm constraint in delay_loop()
     - drm/ingenic: Reset pixclock rate when parent clock rate changes
     - drm/mediatek: Fix mtk_cec_mask()
     - [arm*] drm/vc4: hvs: Reset muxes at probe time
     - [arm*] drm/vc4: txp: Don't set TXP_VSTART_AT_EOF
     - [arm*] drm/vc4: txp: Force alpha to be 0xff if it's disabled
     - bpf: Fix excessive memory allocation in stack_map_alloc()
     - nl80211: show SSID for P2P_GO interfaces
     - drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
     - drm: mali-dp: potential dereference of null pointer
     - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
     - scftorture: Fix distribution of short handler delays
     - net: dsa: mt7530: 1G can also support 1000BASE-X link mode
     - NFC: NULL out the dev->rfkill to prevent UAF
     - efi: Add missing prototype for efi_capsule_setup_info
     - target: remove an incorrect unmap zeroes data deduction
     - drbd: fix duplicate array initializer
     - EDAC/dmc520: Don't print an error for each unconfigured interrupt line
     - mtd: rawnand: denali: Use managed device resources
     - HID: hid-led: fix maximum brightness for Dream Cheeky
     - HID: elan: Fix potential double free in elan_input_configured
     - drm/bridge: Fix error handling in analogix_dp_probe
     - sched/fair: Fix cfs_rq_clock_pelt() for throttled cfs_rq
     - spi: img-spfi: Fix pm_runtime_get_sync() error checking
     - cpufreq: Fix possible race in cpufreq online error path
     - ath9k_htc: fix potential out of bounds access with invalid
       rxstatus->rs_keyix
     - media: hantro: Empty encoder capture buffers by default
     - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01
     - ALSA: pcm: Check for null pointer of pointer substream before
       dereferencing it
     - inotify: show inotify mask flags in proc fdinfo
     - fsnotify: fix wrong lockdep annotations
     - of: overlay: do not break notify on NOTIFY_{OK|STOP}
     - drm/msm/dpu: adjust display_v_end for eDP and DP
     - scsi: ufs: qcom: Fix ufs_qcom_resume()
     - scsi: ufs: core: Exclude UECxx from SFR dump list
     - mtd: spi-nor: core: Check written SR value in
       spi_nor_write_16bit_sr_and_check()
     - [x86] pm: Fix false positive kmemleak report in msr_build_context()
     - mtd: rawnand: cadence: fix possible null-ptr-deref in
       cadence_nand_dt_probe()
     - [x86] speculation: Add missing prototype for unpriv_ebpf_notify()
     - ASoC: rk3328: fix disabling mclk on pclk probe failure
     - perf tools: Add missing headers needed by util/data.h
     - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory
       free during pm runtime resume
     - drm/msm/dp: stop event kernel thread when DP unbind
     - drm/msm/dp: fix error check return value of irq_of_parse_and_map()
     - drm/msm/dsi: fix error checks and return values for DSI xmit functions
     - drm/msm/hdmi: check return value after calling
       platform_get_resource_byname()
     - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
     - drm/msm: add missing include to msm_drv.c
     - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H
     - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
     - perf tools: Use Python devtools for version autodetection rather than
       runtime
     - virtio_blk: fix the discard_granularity and discard_alignment queue limits
     - [x86] Fix return value of __setup handlers
     - irqchip/exiu: Fix acknowledgment of edge triggered interrupts
     - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
     - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value
     - [x86] mm: Cleanup the control_va_addr_alignment() __setup handler
     - [arm64] fix types in copy_highpage()
     - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET
     - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop()
     - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is
       detected
     - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is
       detected
     - drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
     - media: uvcvideo: Fix missing check to determine if element is found in
       list
     - iomap: iomap_write_failed fix
     - spi: spi-fsl-qspi: check return value after calling
       platform_get_resource_byname()
     - Revert "cpufreq: Fix possible race in cpufreq online error path"
     - regulator: qcom_smd: Fix up PM8950 regulator configuration
     - perf/amd/ibs: Use interrupt regs ip for stack unwinding
     - ath11k: Don't check arvif->is_started before sending management frames
     - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe
     - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
     - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
     - ASoC: samsung: Use dev_err_probe() helper
     - ASoC: samsung: Fix refcount leak in aries_audio_probe
     - scripts/faddr2line: Fix overlapping text section failures
     - media: aspeed: Fix an error handling path in aspeed_video_probe()
     - media: exynos4-is: Fix PM disable depth imbalance in fimc_is_probe
     - media: st-delta: Fix PM disable depth imbalance in delta_probe
     - media: exynos4-is: Change clk_disable to clk_disable_unprepare
     - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
     - media: vsp1: Fix offset calculation for plane cropping
     - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
     - Bluetooth: Interleave with allowlist scan
     - Bluetooth: L2CAP: Rudimentary typo fixes
     - Bluetooth: LL privacy allow RPA
     - Bluetooth: use inclusive language in HCI role comments
     - Bluetooth: use inclusive language when filtering devices
     - Bluetooth: use hdev lock for accept_list and reject_list in conn req
     - nvme: set dma alignment to dword
     - lsm,selinux: pass flowi_common instead of flowi to the LSM hooks
     - sctp: read sk->sk_bound_dev_if once in sctp_rcv()
     - net: hinic: add missing destroy_workqueue in hinic_pf_to_mgmt_init
     - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*
     - media: ov7670: remove ov7670_power_off from ov7670_remove
     - media: staging: media: rkvdec: Make use of the helper function
       devm_platform_ioremap_resource()
     - media: rkvdec: h264: Fix dpb_valid implementation
     - media: rkvdec: h264: Fix bit depth wrap in pps packet
     - ext4: reject the 'commit' option on ext2 filesystems
     - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init
     - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set()
     - [x86] sev: Annotate stack change in the #VC handler
     - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path
     - [x86] drm/i915: Fix CFI violation with show_dynamic_id()
     - thermal/drivers/bcm2711: Don't clamp temperature at zero
     - thermal/drivers/broadcom: Fix potential NULL dereference in
       sr_thermal_probe
     - thermal/drivers/core: Use a char pointer for the cooling device name
     - thermal/core: Fix memory leak in __thermal_cooling_device_register()
     - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe
     - ASoC: wm2000: fix missing clk_disable_unprepare() on error in
       wm2000_anc_transition()
     - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
     - ASoC: max98090: Move check for invalid values before casting in
       max98090_put_enab_tlv()
     - net: stmmac: selftests: Use kcalloc() instead of kzalloc()
     - net: stmmac: fix out-of-bounds access in a selftest
     - hv_netvsc: Fix potential dereference of NULL pointer
     - rxrpc: Fix listen() setting the bar too high for the prealloc rings
     - rxrpc: Don't try to resend the request if we're receiving the reply
     - rxrpc: Fix overlapping ACK accounting
     - rxrpc: Don't let ack.previousPacket regress
     - rxrpc: Fix decision on when to generate an IDLE ACK
     - net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc()
     - hinic: Avoid some over memory allocation
     - net/smc: postpone sk_refcnt increment in connect()
     - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399
     - memory: samsung: exynos5422-dmc: Avoid some over memory allocation
     - ARM: dts: suniv: F1C100: fix watchdog compatible
     - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
     - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
     - PCI: cadence: Fix find_first_zero_bit() limit
     - PCI: rockchip: Fix find_first_zero_bit() limit
     - PCI: dwc: Fix setting error return on MSI DMA mapping failure
     - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks
     - soc: qcom: llcc: Add MODULE_DEVICE_TABLE()
     - [x86] KVM: nVMX: Leave most VM-Exit info fields unmodified on failed
       VM-Entry
     - [x86] KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple
       fault
     - platform/chrome: cros_ec: fix error handling in cros_ec_register()
     - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing
     - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls
     - can: xilinx_can: mark bit timing constants as const
     - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96
     - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
     - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C
     - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED
     - ARM: dts: bcm2835-rpi-b: Fix GPIO line names
     - misc: ocxl: fix possible double free in ocxl_file_register_afu
     - crypto: marvell/cesa - ECB does not IV
     - gpiolib: of: Introduce hook for missing gpio-ranges
     - pinctrl: bcm2835: implement hook for missing gpio-ranges
     - arm: mediatek: select arch timer for mt7629
     - powerpc/fadump: fix PT_LOAD segment for boot memory area
     - mfd: ipaq-micro: Fix error check return value of platform_get_irq()
     - scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
     - firmware: arm_scmi: Fix list protocols enumeration in the base protocol
     - nvdimm: Fix firmware activation deadlock scenarios
     - nvdimm: Allow overwrite in the presence of disabled dimms
     - pinctrl: mvebu: Fix irq_of_parse_and_map() return value
     - drivers/base/node.c: fix compaction sysfs file leak
     - dax: fix cache flush on PMD-mapped pages
     - drivers/base/memory: fix an unlikely reference counting issue in
       __add_memory_block()
     - powerpc/8xx: export 'cpm_setbrg' for modules
     - pinctrl: renesas: core: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - powerpc/idle: Fix return value of __setup() handler
     - powerpc/4xx/cpm: Fix return value of __setup() handler
     - ASoC: atmel-pdmic: Remove endianness flag on pdmic component
     - ASoC: atmel-classd: Remove endianness flag on class d component
     - proc: fix dentry/inode overinstantiating under /proc/${pid}/net
     - ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
     - PCI: imx6: Fix PERST# start-up sequence
     - tty: fix deadlock caused by calling printk() under tty_port->lock
     - crypto: sun8i-ss - rework handling of IV
     - crypto: sun8i-ss - handle zero sized sg
     - crypto: cryptd - Protect per-CPU resource by disabling BH.
     - Input: sparcspkr - fix refcount leak in bbc_beep_probe
     - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits
     - hwrng: omap3-rom - fix using wrong clk_disable() in
       omap_rom_rng_runtime_resume()
     - [powerpc*] 64: Only WARN if __pa()/__va() called with bad addresses
     - [powerpc*] perf: Fix the threshold compare group constraint for power9
     - macintosh: via-pmu and via-cuda need RTC_LIB
     - powerpc/fsl_rio: Fix refcount leak in fsl_rio_setup
     - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()
     - mailbox: forward the hrtimer if not queued and under a lock
     - [amd64] RDMA/hfi1: Prevent use of lock before it is initialized
     - Input: stmfts - do not leave device disabled in stmfts_input_open
     - OPP: call of_node_put() on error path in _bandwidth_supported()
     - f2fs: fix dereference of stale list iterator after loop body
     - iommu/mediatek: Add list_del in mtk_iommu_remove
     - i2c: at91: use dma safe buffers
     - cpufreq: mediatek: add missing platform_driver_unregister() on error in
       mtk_cpufreq_driver_init
     - cpufreq: mediatek: Use module_init and add module_exit
     - cpufreq: mediatek: Unregister platform device on exit
     - [mips*] Loongson: Use hwmon_device_register_with_groups() to register
       hwmon
     - i2c: at91: Initialize dma_buf in at91_twi_xfer()
     - dmaengine: idxd: Fix the error handling path in idxd_cdev_register()
     - NFS: Do not report EINTR/ERESTARTSYS as mapping errors
     - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS
     - NFS: Do not report flush errors in nfs_write_end()
     - NFS: Don't report errors from nfs_pageio_complete() more than once
     - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout
     - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
     - dmaengine: stm32-mdma: remove GISR1 register
     - dmaengine: stm32-mdma: rework interrupt handler
     - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler()
     - iommu/amd: Increase timeout waiting for GA log enablement
     - i2c: npcm: Fix timeout calculation
     - i2c: npcm: Correct register access width
     - i2c: npcm: Handle spurious interrupts
     - i2c: rcar: fix PM ref counts in probe error paths
     - perf c2c: Use stdio interface if slang is not supported
     - perf jevents: Fix event syntax error caused by ExtSel
     - f2fs: fix to avoid f2fs_bug_on() in dec_valid_node_count()
     - f2fs: fix to do sanity check on block address in f2fs_do_zero_range()
     - f2fs: fix to clear dirty inode in f2fs_evict_inode()
     - f2fs: fix deadloop in foreground GC
     - f2fs: don't need inode lock for system hidden quota
     - f2fs: fix to do sanity check on total_data_blocks
     - f2fs: fix fallocate to use file_modified to update permissions
       consistently
     - f2fs: fix to do sanity check for inline inode
     - wifi: mac80211: fix use-after-free in chanctx code
     - iwlwifi: mvm: fix assert 1F04 upon reconfig
     - fs-writeback: writeback_sb_inodes：Recalculate 'wrote' according skipped
       pages
     - efi: Do not import certificates from UEFI Secure Boot for T2 Macs
     - bfq: Split shared queues on move between cgroups
     - bfq: Update cgroup information before merging bio
     - bfq: Track whether bfq_group is still online
     - ext4: fix use-after-free in ext4_rename_dir_prepare
     - ext4: fix warning in ext4_handle_inode_extension
     - ext4: fix bug_on in ext4_writepages
     - ext4: filter out EXT4_FC_REPLAY from on-disk superblock field s_state
     - ext4: fix bug_on in __es_tree_search
     - ext4: verify dir block before splitting it (CVE-2022-1184)
     - ext4: avoid cycles in directory h-tree (CVE-2022-1184)
     - ACPI: property: Release subnode properties with data nodes
     - tracing: Fix potential double free in create_var_ref()
     - PCI/PM: Fix bridge_d3_blacklist[] Elo i2 overwrite of Gigabyte X299
     - PCI: qcom: Fix runtime PM imbalance on probe errors
     - PCI: qcom: Fix unbalanced PHY init on probe errors
     - mm, compaction: fast_find_migrateblock() should return pfn in the target
       zone
     - [s390x] perf: obtain sie_block from the right address
     - dlm: fix plock invalid read
     - dlm: fix missing lkb refcount handling
     - ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock
     - scsi: dc395x: Fix a missing check on list iterator
     - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
     - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour.
     - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem
     - drm/nouveau/clk: Fix an incorrect NULL check on list iterator
     - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator
     - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX
     - [x86] drm/i915/dsi: fix VBT send packet port selection for ICL+
     - md: fix an incorrect NULL check in does_sb_need_changing
     - md: fix an incorrect NULL check in md_reload_sb
     - mtd: cfi_cmdset_0002: Move and rename
       chip_check/chip_ready/chip_good_for_write
     - mtd: cfi_cmdset_0002: Use chip_ready() for write on S29GL064N
     - media: coda: Fix reported H264 profile
     - media: coda: Add more H264 levels for CODA960
     - [amd64] RDMA/hfi1: Fix potential integer multiplication overflow errors
     - csky: patch_text: Fixup last cpu should be master
     - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375,
       A38x, A39x
     - irqchip: irq-xtensa-mx: fix initial IRQ affinity
     - cfg80211: declare MODULE_FIRMWARE for regulatory.db
     - mac80211: upgrade passive scan to active scan on DFS channels after beacon
       rx
     - um: chan_user: Fix winch_tramp() return value
     - um: Fix out-of-bounds read in LDT setup
     - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add]
     - ftrace: Clean up hash direct_functions on register failures
     - iommu/msm: Fix an incorrect NULL check on list iterator
     - nodemask.h: fix compilation error with GCC12
     - hugetlb: fix huge_pmd_unshare address update
     - xtensa/simdisk: fix proc_read_simdisk()
     - rtl818x: Prevent using not initialized queues
     - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
     - carl9170: tx: fix an incorrect use of list iterator
     - stm: ltdc: fix two incorrect NULL checks on list iterator
     - bcache: improve multithreaded bch_btree_check()
     - bcache: improve multithreaded bch_sectors_dirty_init()
     - bcache: remove incremental dirty sector counting for
       bch_sectors_dirty_init()
     - bcache: avoid journal no-space deadlock by reserving 1 journal bucket
     - serial: pch: don't overwrite xmit->buf[0] by x_char
     - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
     - gma500: fix an incorrect NULL check on list iterator
     - arm64: dts: qcom: ipq8074: fix the sleep clock frequency
     - phy: qcom-qmp: fix struct clk leak on probe errors
     - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries
     - ARM: pxa: maybe fix gpio lookup tables
     - SMB3: EBADF/EIO errors in rename/open caused by race condition in
       smb2_compound_op
     - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0
     - dt-bindings: gpio: altera: correct interrupt-cells
     - vdpasim: allow to enable a vq repeatedly
     - blk-iolatency: Fix inflight count imbalances and IO hangs on offline
     - coresight: core: Fix coresight device probe failure issue
     - phy: qcom-qmp: fix reset-controller leak on probe errors
     - net: ipa: fix page free in ipa_endpoint_trans_release()
     - net: ipa: fix page free in ipa_endpoint_replenish_one()
     - xfs: set inode size after creating symlink
     - xfs: sync lazy sb accounting on quiesce of read-only mounts
     - xfs: fix chown leaking delalloc quota blocks when fssetxattr fails
     - xfs: fix incorrect root dquot corruption error when switching
       group/project quota types
     - xfs: restore shutdown check in mapped write fault path
     - xfs: force log and push AIL to clear pinned inodes when aborting mount
     - xfs: consider shutdown in bmapbt cursor delete assert
     - xfs: assert in xfs_btree_del_cursor should take into account error
     - kseltest/cgroup: Make test_stress.sh work if run interactively
     - thermal/core: fix a UAF bug in __thermal_cooling_device_register()
     - thermal/core: Fix memory leak in the error path
     - bfq: Avoid merging queues with different parents
     - bfq: Drop pointless unlock-lock pair
     - bfq: Remove pointless bfq_init_rq() calls
     - bfq: Get rid of __bio_blkcg() usage
     - bfq: Make sure bfqg for which we are queueing requests is online
     - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq
     - Revert "random: use static branch for crng_ready()"
     - RDMA/rxe: Generate a completion for unsupported/invalid opcode
     - [mips*] IP27: Remove incorrect `cpu_has_fpu' override
     - [mips*] IP30: Remove incorrect `cpu_has_fpu' override
     - ext4: only allow test_dummy_encryption when supported
     - md: bcache: check the return value of kzalloc() in
       detached_dev_do_request()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.122
     - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
     - staging: greybus: codecs: fix type confusion of list iterator variable
     - iio: adc: ad7124: Remove shift from scan_type
     - tty: goldfish: Use tty_port_destroy() to destroy port
     - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
     - tty: n_tty: Restore EOF push handling behavior
     - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
       and ida_simple_get
     - usb: usbip: fix a refcount leak in stub_probe()
     - usb: usbip: add missing device lock on tweak configuration cmd
     - USB: storage: karma: fix rio_karma_init return
     - usb: musb: Fix missing of_node_put() in omap2430_probe
     - staging: fieldbus: Fix the error handling path in
       anybuss_host_common_probe()
     - pwm: lp3943: Fix duty calculation in case period was clamped
     - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
     - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
     - misc: fastrpc: fix an incorrect NULL check on list iterator
     - firmware: stratix10-svc: fix a missing check on list iterator
     - usb: typec: mux: Check dev_set_name() return value
     - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
     - iio: proximity: vl53l0x: Fix return value check of
       wait_for_completion_timeout
     - iio: adc: sc27xx: fix read big scale voltage not right
     - iio: adc: sc27xx: Fine tune the scale calibration values
     - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
     - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
     - serial: sifive: Report actual baud base rather than fixed 115200
     - coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier
     - extcon: ptn5150: Add queue work sync before driver release
     - soc: rockchip: Fix refcount leak in rockchip_grf_init
     - rtc: mt6397: check return value after calling platform_get_resource()
     - serial: meson: acquire port->lock in startup()
     - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485
     - serial: digicolor-usart: Don't allow CS5-6
     - serial: rda-uart: Don't allow CS5-6
     - serial: txx9: Don't allow CS5-6
     - serial: sh-sci: Don't allow CS5-6
     - serial: sifive: Sanitize CSIZE and c_iflag
     - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7
     - serial: stm32-usart: Correct CSIZE, bits, and parity
     - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
     - bus: ti-sysc: Fix warnings for unbind for serial
     - driver: base: fix UAF when driver_attach failed
     - driver core: fix deadlock in __device_attach
     - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking
     - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe
     - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition
     - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value
     - [s390x] crypto: fix scatterwalk_unmap() callers in AES-GCM
     - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog
     - net: ethernet: mtk_eth_soc: out of bounds read in
       mtk_hwlro_get_fdir_entry()
     - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks
     - net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
     - modpost: fix removing numeric suffixes
     - jffs2: fix memory leak in jffs2_do_fill_super
     - ubi: fastmap: Fix high cpu usage of ubi_bgt by making sure wl_pool not
       empty
     - ubi: ubi_create_volume: Fix use-after-free when volume creation failed
     - bpf: Fix probe read error in ___bpf_prog_run()
     - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct
       smc_wr_tx_pend_priv *"
     - nfp: only report pause frame configuration for physical device
     - sfc: fix considering that all channels have TX queues
     - sfc: fix wrong tx channel offset with efx_separate_tx_channels
     - net/mlx5: Don't use already freed action pointer
     - net/mlx5: correct ECE offset in query qp output
     - net/mlx5e: Update netdev features after changing XDP state
     - net: sched: add barrier to fix packet stuck problem for lockless qdisc
     - tcp: tcp_rtx_synack() can be called from process context
     - gpio: pca953x: use the correct register address to do regcache sync
     - afs: Fix infinite loop found by xfstest generic/676
     - scsi: sd: Fix potential NULL pointer dereference
     - tipc: check attribute length for bearer name
     - driver core: Fix wait_for_device_probe() & deferred_probe_timeout
       interaction
     - perf c2c: Fix sorting in percent_rmt_hitm_cmp()
     - dmaengine: idxd: set DMA_INTERRUPT cap bit
     - mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
     - bootconfig: Make the bootconfig.o as a normal object file
     - tracing: Fix sleeping function called from invalid context on RT kernel
     - tracing: Avoid adding tracer option before update_tracer_options
     - iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe()
     - iommu/arm-smmu-v3: check return value after calling
       platform_get_resource()
     - f2fs: remove WARN_ON in f2fs_is_valid_blkaddr
     - i2c: cadence: Increase timeout per message if necessary
     - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type
     - NFSv4: Don't hold the layoutget locks across multiple RPC calls
     - video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
     - video: fbdev: pxa3xx-gcu: release the resources correctly in
       pxa3xx_gcu_probe/remove()
     - xprtrdma: treat all calls not a bcall when bc_serv is NULL
     - netfilter: nat: really support inet nat without l3 address
     - netfilter: nf_tables: delete flowtable hooks via transaction list
     - powerpc/kasan: Force thread size increase with KASAN
     - netfilter: nf_tables: always initialize flowtable hook list in transaction
     - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe
     - netfilter: nf_tables: release new hooks on unsupported flowtable flags
     - netfilter: nf_tables: memleak flow rule from commit path
     - netfilter: nf_tables: bail out early if hardware offload is not supported
     - xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
     - af_unix: Fix a data-race in unix_dgram_peer_wake_me().
     - bpf, arm64: Clear prog->jited_len along prog->jited
     - net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
     - net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure
     - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer()
     - net: mdio: unexport __init-annotated mdio_bus_init()
     - net: xfrm: unexport __init-annotated xfrm4_protocol_init()
     - net: ipv6: unexport __init-annotated seg6_hmac_init()
     - net/mlx5: Rearm the FW tracer after each tracer event
     - net/mlx5: fs, fail conflicting actions
     - ip_gre: test csum_start instead of transport header
     - net: altera: Fix refcount leak in altera_tse_mdio_create
     - drm: imx: fix compiler warning with gcc-12
     - iio: dummy: iio_simple_dummy: check the return value of kstrdup()
     - staging: rtl8712: fix a potential memory leak in r871xu_drv_init()
     - iio: st_sensors: Add a local lock for protecting odr
     - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean()
     - tty: Fix a possible resource leak in icom_probe
     - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()
     - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop()
     - USB: host: isp116x: check return value after calling
       platform_get_resource()
     - drivers: tty: serial: Fix deadlock in sa1100_set_termios()
     - drivers: usb: host: Fix deadlock in oxu_bus_suspend()
     - USB: hcd-pci: Fully suspend across freeze/thaw cycle
     - sysrq: do not omit current cpu when showing backtrace of all active CPUs
     - usb: dwc2: gadget: don't reset gadget's driver->bus
     - misc: rtsx: set NULL intfdata when probe fails
     - extcon: Modify extcon device to be created after driver data is set
     - clocksource/drivers/sp804: Avoid error on multiple instances
     - staging: rtl8712: fix uninit-value in usb_read8() and friends
     - staging: rtl8712: fix uninit-value in r871xu_drv_init()
     - serial: msm_serial: disable interrupts in __msm_console_write()
     - kernfs: Separate kernfs_pr_cont_buf and rename_lock.
     - watchdog: wdat_wdt: Stop watchdog when rebooting the system
     - md: protect md_unregister_thread from reentrancy
     - scsi: myrb: Fix up null pointer access on myrb_cleanup()
     - Revert "net: af_key: add check for pfkey_broadcast in function
       pfkey_process"
     - ceph: allow ceph.dir.rctime xattr to be updatable
     - drm/radeon: fix a possible null pointer dereference
     - modpost: fix undefined behavior of is_arm_mapping_symbol()
     - [x86] cpu: Elide KCSAN for cpu_has() and friends
     - jump_label,noinstr: Avoid instrumentation for JUMP_LABEL=n builds
     - nbd: call genl_unregister_family() first in nbd_cleanup()
     - nbd: fix race between nbd_alloc_config() and module removal
     - nbd: fix io hung while disconnecting device
     - [s390x] gmap: voluntarily schedule during key setting
     - cifs: version operations for smb20 unneeded when legacy support disabled
     - nodemask: Fix return values to be unsigned
     - vringh: Fix loop descriptors check in the indirect cases
     - scripts/gdb: change kernel config dumping method
     - ALSA: hda/conexant - Fix loopback issue with CX20632
     - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo
       Yoga DuetITL 2021
     - cifs: return errors during session setup during reconnects
     - cifs: fix reconnect on smb3 mount types
     - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files
     - mmc: block: Fix CQE recovery reset success
     - net: phy: dp83867: retrigger SGMII AN when link change
     - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION
     - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling
     - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION
     - ixgbe: fix bcast packets Rx on VF after promisc removal
     - ixgbe: fix unexpected VLAN Rx in promisc mode on VF
     - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag
     - drm/bridge: analogix_dp: Support PSR-exit to disable transition
     - drm/atomic: Force bridge self-refresh-exit on CRTC switch
     - [powerpc*] 32: Fix overread/overwrite of thread_struct via ptrace
       (CVE-2022-32981)
     - [powerpc*] mm: Switch obsolete dssall to .long
     - interconnect: qcom: sc7180: Drop IP0 interconnects
     - interconnect: Restore sync state by ignoring ipa-virt in provider count
     - md/raid0: Ignore RAID0 layout if the second zone has only one device
     - PCI: qcom: Fix pipe clock imbalance
     - zonefs: fix handling of explicit_open option on mount
     - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT
     - tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.123
     - [x86] Mitigate Processor MMIO Stale Data vulnerabilities
       (CVE-2022-21123, CVE-2022-21125, CVE-2022-21166):
       + Documentation: Add documentation for Processor MMIO Stale Data
       + x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
       + x86/speculation: Add a common function for MD_CLEAR mitigation update
       + x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
       + x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
       + x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
       + x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
       + x86/speculation/srbds: Update SRBDS mitigation selection
       + x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
       + KVM: x86/speculation: Disable Fill buffer clear within guests
       + x86/speculation/mmio: Print SMT warning
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.124
     - 9p: missing chunk of "fs/9p: Don't update file type when updating file
       attributes"
     - nfsd: Replace use of rwsem with errseq_t
     - bpf: Fix incorrect memory charge cost calculation in stack_map_alloc()
     - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()
     - quota: Prevent memory allocation recursion while holding dq_lock
     - [armhf] ASoC: es8328: Fix event generation for deemphasis control
     - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to
       dmi_use_low_level_irq
     - scsi: vmw_pvscsi: Expand vcpuHint to 16 bits
     - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology
     - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd
       completion
     - scsi: ipr: Fix missing/incorrect resource cleanup in error case
     - scsi: pmcraid: Fix missing resource cleanup in error case
     - ALSA: hda/realtek - Add HW8326 support
     - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration
       failed
     - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg
     - random: credit cpu and bootloader seeds by default
     - pNFS: Don't keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE
     - pNFS: Avoid a live lock condition in pnfs_update_layout()
     - [x86] clocksource: hyper-v: unexport __init-annotated
       hv_init_clocksource()
     - i40e: Fix adding ADQ filter to TC0
     - i40e: Fix calculating the number of queue pairs
     - i40e: Fix call trace in setup_tx_descriptors
     - [x86] Drivers: hv: vmbus: Release cpu lock in error case
     - [x86] drm/i915/reset: Fix error_state_read ptr + offset use
     - nvme: use sysfs_emit instead of sprintf
     - nvme: add device name to warning in uuid_show()
     - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg
     - [arm64] ftrace: fix branch range checks
     - [arm64] ftrace: consistently handle PLTs.
     - block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
     - faddr2line: Fix overlapping text section failures, the sequel
     - [arm64,armhf] irqchip/gic-v3: Fix error handling in
       gic_populate_ppi_partitions
     - [arm64,armhf] irqchip/gic-v3: Fix refcount leak in
       gic_populate_ppi_partitions
     - i2c: designware: Use standard optional ref clock implementation
     - [x86] mei: me: add raptor lake point S DID
     - [x86] comedi: vmk80xx: fix expression for tx buffer size
     - USB: serial: option: add support for Cinterion MV31 with new baseline
     - USB: serial: io_ti: add Agilent E5805A support
     - [arm*] usb: dwc2: Fix memory leak in dwc2_hcd_init
     - serial: 8250: Store to lsr_save_flags after lsr read
     - dm mirror log: round up region bitmap size to BITS_PER_LONG
     - drm/amd/display: Cap OLED brightness per max frame-average luminance
     - ext4: fix bug_on ext4_mb_use_inode_pa
     - ext4: make variable "count" signed
     - ext4: add reserved GDT blocks check
     - [arm64] KVM: arm64: Don't read a HW interrupt pending state in user
       context
     - [x86] KVM: x86: Account a variety of miscellaneous allocations
     - [x86] KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel
       data leak
     - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine
     - virtio-pci: Remove wrong address verification in vp_del_vqs()
     - dma-direct: don't over-decrypt memory
     - net/sched: act_police: more accurate MTU policing
     - net: openvswitch: fix misuse of the cached connection on tuple changes
     - Revert "PCI: Make pci_enable_ptm() private"
     - igc: Enable PCIe PTM
     - [arm64] clk: imx8mp: fix usb_root_clk parent
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.125
     - [s390x] mm: use non-quiescing sske for KVM switch to keyed guest
     - zonefs: fix zonefs_iomap_begin() for reads
     - usb: gadget: u_ether: fix regression in setting fixed MAC address
     - tcp: add some entropy in __inet_hash_connect()
     - tcp: use different parts of the port_offset for index and offset
       (CVE-2022-1012)
     - tcp: add small random increments to the source port (CVE-2022-1012)
     - tcp: dynamically allocate the perturb table used by source ports
       (CVE-2022-1012)
     - tcp: increase source port perturb table to 2^16 (CVE-2022-1012,
       CVE-2022-32296)
     - tcp: drop the hash_32() part from the index calculation (CVE-2022-1012)
     - serial: core: Initialize rs485 RTS polarity already on probe
     - [arm64] mm: Don't invalidate FROM_DEVICE buffers at start of DMA transfer
     - io_uring: add missing item types for various requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.126
     - io_uring: use separate list entry for iopoll requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.127
     - vt: drop old FONT ioctls
     - random: schedule mix_interrupt_randomness() less often
     - random: quiet urandom warning ratelimit suppression message
     - ALSA: hda/via: Fix missing beep setup
     - ALSA: hda/conexant: Fix missing beep setup
     - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop
     - ALSA: hda/realtek - ALC897 headset MIC no sound
     - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly
     - ALSA: hda/realtek: Add quirk for Clevo PD70PNT
     - ALSA: hda/realtek: Add quirk for Clevo NS50PU
     - net: openvswitch: fix parsing of nw_proto for IPv6 fragments
     - btrfs: add error messages to all unrecognized mount options
     - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing
     - [armhf] mtd: rawnand: gpmi: Fix setting busy timeout setting
     - ata: libata: add qc->flags in ata_qc_complete_template tracepoint
     - dm era: commit metadata in postsuspend after worker stops
     - dm mirror log: clear log bits up to BITS_PER_LONG boundary
     - USB: serial: option: add Telit LE910Cx 0x1250 composition
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: option: add Quectel RM500K module support
     - [arm64] drm/msm: Fix double pm_runtime_disable() call
     - netfilter: nftables: add nft_parse_register_load() and use it
     - netfilter: nftables: add nft_parse_register_store() and use it
     - netfilter: use get_random_u32 instead of prandom
     - scsi: scsi_debug: Fix zone transition to full condition
     - [arm64] drm/msm: use for_each_sgtable_sg to iterate over scatterlist
     - bpf: Fix request_sock leak in sk lookup helpers
     - [arm64,armhf] drm/sun4i: Fix crash during suspend after component bind
       failure
     - [amd64] bpf, x86: Fix tail call count offset calculation on bpf2bpf call
     - phy: aquantia: Fix AN when higher speeds than 1G are not advertised
     - tipc: simplify the finalize work queue
     - tipc: fix use-after-free Read in tipc_named_reinit
     - igb: fix a use-after-free issue in igb_clean_tx_ring
     - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     - net/sched: sch_netem: Fix arithmetic in netem_dump() for 32-bit platforms
     - [arm64] drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf
     - [arm64] drm/msm/dp: check core_initialized before disable interrupts at
       dp_display_unbind()
     - [arm64] drm/msm/dp: fixes wrong connection state caused by failure of link
       train
     - [arm64] drm/msm/dp: deinitialize mainlink if link training failed
     - [arm64] drm/msm/dp: promote irq_hpd handle to handle link training
       correctly
     - [arm64] drm/msm/dp: fix connect/disconnect handled at irq_hpd
     - erspan: do not assume transport header is always set
     - x86/xen: Remove undefined behavior in setup_features()
     - afs: Fix dynamic root getattr
     - ice: ethtool: advertise 1000M speeds properly
     - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips
     - igb: Make DMA faster when CPU is active on the PCIe link
     - virtio_net: fix xdp_rxq_info bug after suspend/resume
     - nvme: centralize setting the timeout in nvme_alloc_request
     - nvme: split nvme_alloc_request()
     - nvme: mark nvme_setup_passsthru() inline
     - nvme: don't check nvme_req flags for new req
     - nvme-pci: allocate nvme_command within driver pdu
     - nvme-pci: add NO APST quirk for Kioxia device
     - nvme: move the Samsung X5 quirk entry to the core quirks
     - [s390x] cpumf: Handle events cycles and instructions identical
     - iio: mma8452: fix probe fail when device tree compatible is used.
     - iio: adc: vf610: fix conversion mode sysfs node name
     - xhci: turn off port power in shutdown
     - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI
     - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI
     - [arm64,armhf] usb: chipidea: udc: check request status before setting
       device address
     - f2fs: attach inline_data after setting compression
     - iio:accel:bma180: rearrange iio trigger get and register
     - iio:accel:mxc4005: rearrange iio trigger get and register
     - iio: accel: mma8452: ignore the return value of reset operation
     - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up()
     - iio: imu: inv_icm42600: Fix broken icm42600 (chip id 0 value)
     - iio: adc: axp288: Override TS pin bias current for some models
     - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client
     - [powerpc*] Enable execve syscall exit tracepoint
     - [powerpc*] rtas: Allow ibm,platform-dump RTAS call with null buffer
       address
     - [powerpc*] powernv: wire up rng during setup_arch
     - [armhf] exynos: Fix refcount leak in exynos_map_pmu
     - modpost: fix section mismatch check for exported init/exit sections
     - random: update comment from copy_to_user() -> copy_to_iter()
     - [powerpc*] pseries: wire up rng during setup_arch()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.120-rt70
   * [rt] Drop "crypto: cryptd - add a lock instead
     preempt_disable/local_bh_disable" patch
   * Bump ABI to 16
 .
   [ Ben Hutchings ]
   * random: Enable RANDOM_TRUST_BOOTLOADER. This can be reverted using the
     kernel parameter: random.trust_bootloader=off
   * [armel,armhf] crypto: Enable optimised implementations (see #922204):
     - Enable CRYPTO_SHA256_ARM, CRYPTO_SHA512_ARM as modules
     - [armhf] Enable SHA1_ARM_NEON, CRYPTO_SHA1_ARM_CE, CRYPTO_SHA2_ARM_CE,
       CRYPTO_AES_ARM_BS, CRYPTO_AES_ARM_CE, CRYPTO_GHASH_ARM_CE,
       CRYPTO_CRCT10DIF_ARM_CE, CRYPTO_CRC32_ARM_CE as modules
linux (5.10.120-1) bullseye-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.114
     - USB: quirks: add a Realtek card reader
     - USB: quirks: add STRING quirk for VCOM device
     - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
     - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader
     - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB
     - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
     - xhci: Enable runtime PM on second Alderlake controller
     - xhci: stop polling roothubs after shutdown
     - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
     - iio: dac: ad5592r: Fix the missing return value.
     - iio: dac: ad5446: Fix read_raw not returning set value
     - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
     - iio: imu: inv_icm42600: Fix I2C init possible nack
     - usb: misc: fix improper handling of refcount in uss720_probe()
     - [arm64,x86] usb: typec: ucsi: Fix reuse of completion structure
     - [arm64,x86] usb: typec: ucsi: Fix role swapping
     - usb: gadget: uvc: Fix crash when encoding data for usb request
     - usb: gadget: configfs: clear deactivation flag in
       configfs_composite_unbind()
     - [arm64,armhf] usb: dwc3: Try usb-role-switch first in dwc3_drd_init
     - [arm64,armhf] usb: dwc3: core: Fix tx/rx threshold settings
     - [arm64,armhf] usb: dwc3: core: Only handle soft-reset in DCTL
     - [arm64,armhf] usb: dwc3: gadget: Return proper request status
     - [arm*] usb: phy: generic: Get the vbus supply
     - [arm64,armhf] serial: imx: fix overrun interrupts in DMA mode
     - serial: 8250: Also set sticky MCR bits in console restoration
     - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
     - [arm64,armhf] arch_topology: Do not set llc_sibling if llc_id is invalid
     - hex2bin: make the function hex_to_bin constant-time
     - hex2bin: fix access beyond string end
     - iocost: don't reset the inuse weight of under-weighted debtors
     - video: fbdev: udlfb: properly check endpoint type
     - iio:imu:bmi160: disable regulator in error path
     - USB: Fix xhci event ring dequeue pointer ERDP update issue
     - [armhf] phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
     - [armhf] phy: samsung: exynos5250-sata: fix missing device put in probe
       error paths
     - [armhf] OMAP2+: Fix refcount leak in omap_gic_of_init
     - [armhf] bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific
     - [armhf] phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
     - [armhf] dts: am3517-evm: Fix misc pinmuxing
     - [armhf] dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35
     - ipvs: correctly print the memory size of ip_vs_conn_tab
     - [armhf] pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered
       IRQs in EOI
     - [arm64,armhf] net: dsa: Add missing of_node_put() in
       dsa_port_link_register_of
     - netfilter: nft_set_rbtree: overlap detection with element re-addition
       after deletion
     - bpf, lwt: Fix crash when using bpf_skb_set_tunnel_key() from bpf_xmit lwt
       hook
     - [arm64,armhf] pinctrl: rockchip: fix RK3308 pinmux bits
     - tcp: md5: incorrect tcp_header_len for incoming connections
     - [armhf] pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ
       requested
     - tcp: ensure to use the most recently sent skb when filling the rate sample
     - wireguard: device: check for metadata_dst with skb_valid_dst()
     - sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     - [arm64] dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock
     - [arm64] net: hns3: modify the return code of hclge_get_ring_chain_from_mbx
     - [arm64] net: hns3: add validity check for message data length
     - [arm64] net: hns3: add return value for mailbox handling in PF
     - net/smc: sync err code when tcp connection was refused
     - ip_gre: Make o_seqno start from 0 in native mode
     - ip6_gre: Make o_seqno start from 0 in native mode
     - ip_gre, ip6_gre: Fix race condition on o_seqno in collect_md mode
     - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT
     - tcp: make sure treq->af_specific is initialized
     - [arm64,armhf] bus: sunxi-rsb: Fix the return value of
       sunxi_rsb_device_create()
     - [arm64,armhf] clk: sunxi: sun9i-mmc: check return value after calling
       platform_get_resource()
     - [arm64] net: bcmgenet: hide status block before TX timestamping
     - net: phy: marvell10g: fix return value on error
     - bnx2x: fix napi API usage sequence
     - [arm64,armhf] net: fec: add missing of_node_put() in
       fec_enet_init_stop_mode()
     - ixgbe: ensure IPsec VF<->PF compatibility
     - tcp: fix F-RTO may not work correctly when receiving DSACK
     - [x86] ASoC: Intel: soc-acpi: correct device endpoints for max98373
     - ext4: fix bug_on in start_this_handle during umount filesystem
     - [amd64] x86: __memcpy_flushcache: fix wrong alignment if size > 2^32
     - cifs: destage any unwritten data to the server before calling
       copychunk_write
     - [x86] drivers: net: hippi: Fix deadlock in rr_close()
     - zonefs: Fix management of open zones
     - zonefs: Clear inode information flags on inode creation
     - [x86] drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses
     - [armhf] net: ethernet: stmmac: fix write to sgmii_adapter_base
     - [x86] thermal: int340x: Fix attr.show callback prototype
     - [x86] cpu: Load microcode during restore_processor_state()
     - tty: n_gsm: fix restart handling via CLD command
     - tty: n_gsm: fix decoupled mux resource
     - tty: n_gsm: fix mux cleanup after unregister tty device
     - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2
     - tty: n_gsm: fix malformed counter for out of frame data
     - netfilter: nft_socket: only do sk lookups when indev is available
     - tty: n_gsm: fix insufficient txframe size
     - tty: n_gsm: fix wrong DLCI release order
     - tty: n_gsm: fix missing explicit ldisc flush
     - tty: n_gsm: fix wrong command retry handling
     - tty: n_gsm: fix wrong command frame length field encoding
     - tty: n_gsm: fix reset fifo race condition
     - tty: n_gsm: fix incorrect UA handling
     - tty: n_gsm: fix software flow control handling
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.115
     - [mips*] Fix CP0 counter erratum detection for R4k CPUs
     - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers
     - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
     - [arm64] mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC
     - mmc: core: Set HS clock speed before sending HS CMD13
     - gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
     - [x86] KVM: x86/svm: Account for family 17h event renumberings in
       amd_pmc_perf_hw_id
     - [amd64] iommu/vt-d: Calculate mask for non-aligned flushes
     - Revert "SUNRPC: attempt AF_LOCAL connect on setup"
     - firewire: fix potential uaf in outbound_phy_packet_callback()
     - firewire: remove check of list iterator against head past the loop body
     - firewire: core: extend card->lock in fw_core_handle_bus_reset
     - net: stmmac: disable Split Header (SPH) for Intel platforms
     - genirq: Synchronize interrupt thread startup
     - ASoC: da7219: Fix change notifications for tone generator frequency
     - [s390x] dasd: fix data corruption for ESE devices
     - [s390x] dasd: prevent double format of tracks for ESE devices
     - [s390x] dasd: Fix read for ESE with blksize < 4k
     - [s390x] dasd: Fix read inconsistency for ESE DASD devices
     - can: isotp: remove re-binding of bound socket
     - nfc: replace improper check device_is_registered() in netlink related
       functions (CVE-2022-1974)
     - NFC: netlink: fix sleep in atomic bug when firmware download timeout
       (CVE-2022-1975)
     - [arm64,armhf] gpio: pca953x: fix irq_stat not updated when irq is disabled
       (irq_mask not set)
     - hwmon: (adt7470) Fix warning on module removal
     - [arm*] ASoC: dmaengine: Restore NULL prepare_slave_config() callback
     - net/mlx5e: Fix trust state reset in reload
     - net/mlx5e: Don't match double-vlan packets if cvlan is not set
     - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft
       release
     - net/mlx5e: Fix the calling of update_buffer_lossy() API
     - net/mlx5: Avoid double clear or set of sync reset requested
     - NFSv4: Don't invalidate inode attributes on delegation return
     - [arm64,armhf] net: stmmac: dwmac-sun8i: add missing of_node_put() in
       sun8i_dwmac_register_mdio_mux()
     - [armhf] net: cpsw: add missing of_node_put() in cpsw_probe_dt()
     - hinic: fix bug of wq out of bound access
     - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
     - bnxt_en: Fix unnecessary dropping of RX packets
     - [arm64,armhf] smsc911x: allow using IRQ0
     - btrfs: always log symlinks in full mode
     - net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
     - [x86] kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has
       architectural PMU
     - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu
     - [x86] kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
     - [x86] KVM: x86: Do not change ICR on write to APIC_SELF_IPI
     - [x86] KVM: x86/mmu: avoid NULL-pointer dereference on page freeing bugs
     - [x86] KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is
       advertised
     - rcu: Fix callbacks processing time limit retaining cond_resched()
     - rcu: Apply callbacks processing time limit only on softirq
     - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
       (CVE-2022-0494)
     - dm: interlock pending dm_io and dm_wait_for_bios_completion
     - [arm64] PCI: aardvark: Clear all MSIs at setup
     - [arm64] PCI: aardvark: Fix reading MSI interrupt number
     - mmc: rtsx: add 74 Clocks in power on flow
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.116
     - regulator: consumer: Add missing stubs to regulator/consumer.h
     - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
     - nfp: bpf: silence bitwise vs. logical OR warning
     - Bluetooth: Fix the creation of hdev->name
     - mm: fix missing cache flush for all tail pages of compound page
     - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
     - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and
       __mcopy_atomic()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.117
     - batman-adv: Don't skb_split skbuffs with frag_list
     - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing
     - hwmon: (tmp401) Add OF device ID table
     - mac80211: Reset MBSSID parameters upon connection
     - net: Fix features skip in for_each_netdev_feature()
     - [arm64] net: mscc: ocelot: fix last VCAP IS1/IS2 filter persisting in
       hardware when deleted
     - [arm64] net: mscc: ocelot: fix VCAP IS2 filters matching on both lookups
     - [arm64] net: mscc: ocelot: restrict tc-trap actions to VCAP IS2 lookup 0
     - [arm64] net: mscc: ocelot: avoid corrupting hardware counters when moving
       VCAP filters
     - ipv4: drop dst in multicast routing path
     - drm/nouveau: Fix a potential theorical leak in
       nouveau_get_backlight_name()
     - netlink: do not reset transport header in netlink_recvmsg()
     - sfc: Use swap() instead of open coding it
     - net: sfc: fix memory leak due to ptp channel
     - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
     - nfs: fix broken handling of the softreval mount option
     - dim: initialize all struct fields
     - [s390x] ctcm: fix variable dereferenced before check
     - [s390x] ctcm: fix potential memory leak
     - [s390x] lcs: fix variable dereferenced before check
     - net/sched: act_pedit: really ensure the skb is writable
     - [arm64] net: bcmgenet: Check for Wake-on-LAN interrupt probe deferral
     - [armhf] net: dsa: bcm_sf2: Fix Wake-on-LAN with mac_link_down()
     - net/smc: non blocking recvmsg() return -EAGAIN when no data and
       signal_pending
     - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
     - gfs2: Fix filesystem block deallocation for short writes
     - hwmon: (f71882fg) Fix negative temperature
     - ASoC: max98090: Reject invalid values in custom control put()
     - ASoC: max98090: Generate notifications on changes for custom control
     - ASoC: ops: Validate input values in snd_soc_put_volsw_range()
     - net: sfp: Add tx-fault workaround for Huawei MA5671A SFP ONT
     - tcp: resalt the secret every 10 seconds (CVE-2022-1012)
     - firmware_loader: use kernel credentials when reading firmware
     - tty: n_gsm: fix mux activation issues in gsm_config()
     - usb: cdc-wdm: fix reading stuck on device close
     - USB: serial: pl2303: add device id for HP LM930 Display
     - USB: serial: qcserial: add support for Sierra Wireless EM7590
     - USB: serial: option: add Fibocom L610 modem
     - USB: serial: option: add Fibocom MA510 modem
     - ceph: fix setting of xattrs on async created inodes
     - drm/nouveau/tegra: Stop using iommu_present()
     - i40e: i40e_main: fix a missing check on list iterator
     - [amd64,arm64] net: atlantic: always deep reset on pm op, fixing up my null
       deref regression
     - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
     - [x86] drm/vmwgfx: Initialize drm_mode_fb_cmd2
     - SUNRPC: Clean up scheduling of autoclose
     - SUNRPC: Prevent immediate close+reconnect
     - SUNRPC: Don't call connect() more than once on a TCP socket
     - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
       (CVE-2022-28893)
     - net: phy: Fix race condition on link status change
     - [arm*] arm[64]/memremap: don't abuse pfn_valid() to ensure presence of
       linear map
     - ping: fix address binding wrt vrf
     - usb: gadget: uvc: rename function to be more consistent
     - usb: gadget: uvc: allow for application to cleanly shutdown
     - io_uring: always use original task when preparing req identity
       (CVE-2022-1786)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.118
     - io_uring: always grab file table for deferred statx
     - floppy: use a statically allocated error counter
     - [x86] Revert "drm/i915/opregion: check port number bounds for SWSCI
       display power state"
     - igc: Remove _I_PHY_ID checking
     - igc: Remove phy->type checking
     - igc: Update I226_K device ID
     - rtc: fix use-after-free on device removal
     - [arm64] rtc: pcf2127: fix bug when reading alarm registers
     - Input: add bounds checking to input_set_capability()
     - nvme-pci: add quirks for Samsung X5 SSDs
     - gfs2: Disable page faults during lockless buffered reads
     - [arm64,armhf] rtc: sun6i: Fix time overflow handling
     - [armhf] crypto: stm32 - fix reference leak in stm32_crc_remove
     - [amd64] crypto: x86/chacha20 - Avoid spurious jumps to other functions
     - ALSA: hda/realtek: Enable headset mic on Lenovo P360
     - [s390x] pci: improve zpci_dev reference counting
     - nvme-multipath: fix hang when disk goes live over reconnect
     - rtc: mc146818-lib: Fix the AltCentury for AMD platforms
     - fs: fix an infinite loop in iomap_fiemap
     - drbd: remove usage of list iterator variable after loop
     - [arm64] platform/chrome: cros_ec_debugfs: detach log reader wq from devm
     - [armel,armhf] 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in
       unwind_frame()
     - nilfs2: fix lockdep warnings in page operations for btree nodes
     - nilfs2: fix lockdep warnings during disk space reclamation
     - Revert "swiotlb: fix info leak with DMA_FROM_DEVICE"
     - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
       (CVE-2022-0854)
     - ALSA: usb-audio: Restore Rane SL-1 quirk
     - [i386] ALSA: wavefront: Proper check of get_user() error
     - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
     - perf: Fix sys_perf_event_open() race against self (CVE-2022-1729)
     - selinux: fix bad cleanup on error in hashtab_duplicate()
     - Fix double fget() in vhost_net_set_backend()
     - PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
     - [x86] KVM: x86/mmu: Update number of zapped pages even if page list is
       stable
     - [arm64] paravirt: Use RCU read locks to guard stolen_time
     - [arm64] mte: Ensure the cleared tags are visible before setting the PTE
     - [arm64] crypto: qcom-rng - fix infinite loop on requests not multiple of
       WORD_SZ
     - libceph: fix potential use-after-free on linger ping and resends
     - drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
     - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
     - [armhf] pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl
     - [arm64] net: macb: Increment rx bd head after allocating skb and buffer
     - net: evaluate net.ipvX.conf.all.disable_policy and disable_xfrm
     - xfrm: Add possibility to set the default to block if we have no policy
     - net: xfrm: fix shift-out-of-bounce
     - xfrm: make user policy API complete
     - xfrm: notify default policy on update
     - xfrm: fix dflt policy check when there is no policy configured
     - xfrm: rework default policy structure
     - xfrm: fix "disable_policy" flag use when arriving from different devices
     - net/sched: act_pedit: sanitize shift argument before usage
     - [x86] net: vmxnet3: fix possible use-after-free bugs in
       vmxnet3_rq_alloc_rx_buf()
     - [x86] net: vmxnet3: fix possible NULL pointer dereference in
       vmxnet3_rq_cleanup()
     - ice: fix possible under reporting of ethtool Tx and Rx statistics
     - net/qla3xxx: Fix a test in ql_reset_work()
     - net/mlx5e: Properly block LRO when XDP is enabled
     - net: af_key: add check for pfkey_broadcast in function pfkey_process
     - [armhf] 9196/1: spectre-bhb: enable for Cortex-A15
     - [armel,armhf] 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
     - igb: skip phy status check where unavailable
     - net: bridge: Clear offload_fwd_mark when passing frame up bridge
       interface.
     - [arm*] gpio: mvebu/pwm: Refuse requests with inverted polarity
     - scsi: qla2xxx: Fix missed DMA unmap for aborted commands
     - mac80211: fix rx reordering with non explicit / psmp ack policy
     - nl80211: validate S1G channel width
     - nl80211: fix locking in nl80211_set_tx_bitrate_mask()
     - ethernet: tulip: fix missing pci_disable_device() on error in
       tulip_init_one()
     - [amd64,arm64] net: atlantic: fix "frag[0] not initialized"
     - [amd64,arm64] net: atlantic: reduce scope of is_rsc_complete
     - [amd64,arm64] net: atlantic: add check for MAX_SKB_FRAGS
     - [amd64,arm64] net: atlantic: verify hw_head_ lies within TX buffer ring
     - [arm64] Enable repeat tlbi workaround on KRYO4XX gold CPUs
     - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group
     - afs: Fix afs_getattr() to refetch file status if callback break occurred
     - include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.119
     - lockdown: also lock down previous kgdb use (CVE-2022-21499)
     - staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
     - [x86] KVM: x86: Properly handle APF vs disabled LAPIC situation
     - [x86] KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
       (CVE-2022-1789)
     - tcp: change source port randomizarion at connect() time
     - secure_seq: use the 64 bits of the siphash for port offset calculation
       (CVE-2022-1012)
     - ACPI: sysfs: Make sparse happy about address space in use
     - ACPI: sysfs: Fix BERT error region memory mapping
     - random: avoid arch_get_random_seed_long() when collecting IRQ randomness
     - random: remove dead code left over from blocking pool
     - MAINTAINERS: co-maintain random.c
     - MAINTAINERS: add git tree for random.c
     - crypto: lib/blake2s - Move selftest prototype into header file
     - crypto: blake2s - define shash_alg structs using macros
     - [amd64] crypto: x86/blake2s - define shash_alg structs using macros
     - crypto: blake2s - remove unneeded includes
     - crypto: blake2s - move update and final logic to internal/blake2s.h
     - crypto: blake2s - share the "shash" API boilerplate code
     - crypto: blake2s - optimize blake2s initialization
     - crypto: blake2s - add comment for blake2s_state fields
     - crypto: blake2s - adjust include guard naming
     - crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h>
     - lib/crypto: blake2s: include as built-in
     - lib/crypto: blake2s: move hmac construction into wireguard
     - lib/crypto: sha1: re-roll loops to reduce code size
     - lib/crypto: blake2s: avoid indirect calls to compression function for
       Clang CFI
     - random: document add_hwgenerator_randomness() with other input functions
     - random: remove unused irq_flags argument from add_interrupt_randomness()
     - random: use BLAKE2s instead of SHA1 in extraction
     - random: do not sign extend bytes for rotation when mixing
     - random: do not re-init if crng_reseed completes before primary init
     - random: mix bootloader randomness into pool
     - random: harmonize "crng init done" messages
     - random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs
     - random: early initialization of ChaCha constants
     - random: avoid superfluous call to RDRAND in CRNG extraction
     - random: don't reset crng_init_cnt on urandom_read()
     - random: fix typo in comments
     - random: cleanup poolinfo abstraction
     - random: cleanup integer types
     - random: remove incomplete last_data logic
     - random: remove unused extract_entropy() reserved argument
     - random: rather than entropy_store abstraction, use global
     - random: remove unused OUTPUT_POOL constants
     - random: de-duplicate INPUT_POOL constants
     - random: prepend remaining pool constants with POOL_
     - random: cleanup fractional entropy shift constants
     - random: access input_pool_data directly rather than through pointer
     - random: selectively clang-format where it makes sense
     - random: simplify arithmetic function flow in account()
     - random: continually use hwgenerator randomness
     - random: access primary_pool directly rather than through pointer
     - random: only call crng_finalize_init() for primary_crng
     - random: use computational hash for entropy extraction
     - random: simplify entropy debiting
     - random: use linear min-entropy accumulation crediting
     - random: always wake up entropy writers after extraction
     - random: make credit_entropy_bits() always safe
     - random: remove use_input_pool parameter from crng_reseed()
     - random: remove batched entropy locking
     - random: fix locking in crng_fast_load()
     - random: use RDSEED instead of RDRAND in entropy extraction
     - random: get rid of secondary crngs
     - random: inline leaves of rand_initialize()
     - random: ensure early RDSEED goes through mixer on init
     - random: do not xor RDRAND when writing into /dev/random
     - random: absorb fast pool into input pool after fast load
     - random: use simpler fast key erasure flow on per-cpu keys
     - random: use hash function for crng_slow_load()
     - random: make more consistent use of integer types
     - random: remove outdated INT_MAX >> 6 check in urandom_read()
     - random: zero buffer after reading entropy from userspace
     - random: fix locking for crng_init in crng_reseed()
     - random: tie batched entropy generation to base_crng generation
     - random: remove ifdef'd out interrupt bench
     - random: remove unused tracepoints
     - random: add proper SPDX header
     - random: deobfuscate irq u32/u64 contributions
     - random: introduce drain_entropy() helper to declutter crng_reseed()
     - random: remove useless header comment
     - random: remove whitespace and reorder includes
     - random: group initialization wait functions
     - random: group crng functions
     - random: group entropy extraction functions
     - random: group entropy collection functions
     - random: group userspace read/write functions
     - random: group sysctl functions
     - random: rewrite header introductory comment
     - random: defer fast pool mixing to worker
     - random: do not take pool spinlock at boot
     - random: unify early init crng load accounting
     - random: check for crng_init == 0 in add_device_randomness()
     - random: pull add_hwgenerator_randomness() declaration into random.h
     - random: clear fast pool, crng, and batches in cpuhp bring up
     - random: round-robin registers as ulong, not u32
     - random: only wake up writers after zap if threshold was passed
     - random: cleanup UUID handling
     - random: unify cycles_t and jiffies usage and types
     - random: do crng pre-init loading in worker rather than irq
     - random: give sysctl_random_min_urandom_seed a more sensible value
     - random: don't let 644 read-only sysctls be written to
     - random: replace custom notifier chain with standard one
     - random: use SipHash as interrupt entropy accumulator
     - random: make consistent usage of crng_ready()
     - random: reseed more often immediately after booting
     - random: check for signal and try earlier when generating entropy
     - random: skip fast_init if hwrng provides large chunk of entropy
     - random: treat bootloader trust toggle the same way as cpu trust toggle
     - random: re-add removed comment about get_random_{u32,u64} reseeding
     - random: mix build-time latent entropy into pool at init
     - random: do not split fast init input in add_hwgenerator_randomness()
     - random: do not allow user to keep crng key around on stack
     - random: check for signal_pending() outside of need_resched() check
     - random: check for signals every PAGE_SIZE chunk of /dev/[u]random
     - random: allow partial reads if later user copies fail
     - random: make random_get_entropy() return an unsigned long
     - random: document crng_fast_key_erasure() destination possibility
     - random: fix sysctl documentation nits
     - init: call time_init() before rand_initialize()
     - [s390x] define get_cycles macro for arch-override
     - [powerpc*] define get_cycles macro for arch-override
     - timekeeping: Add raw clock fallback for random_get_entropy()
     - [mips*] use fallback for random_get_entropy() instead of just c0 random
     - [arm*] use fallback for random_get_entropy() instead of zero
     - [x86] tsc: Use fallback for random_get_entropy() instead of zero
     - random: insist on random_get_entropy() existing in order to simplify
     - random: do not use batches when !crng_ready()
     - random: use first 128 bits of input as fast init
     - random: do not pretend to handle premature next security model
     - random: order timer entropy functions below interrupt functions
     - random: do not use input pool from hard IRQs
     - random: help compiler out with fast_mix() by using simpler arguments
     - siphash: use one source of truth for siphash permutations
     - random: use symbolic constants for crng_init states
     - random: avoid initializing twice in credit race
     - random: move initialization out of reseeding hot path
     - random: remove ratelimiting for in-kernel unseeded randomness
     - random: use proper jiffies comparison macro
     - random: handle latent entropy and command line from random_init()
     - random: credit architectural init the exact amount
     - random: use static branch for crng_ready()
     - random: remove extern from functions in header
     - random: use proper return types on get_random_{int,long}_wait()
     - random: make consistent use of buf and len
     - random: move initialization functions out of hot pages
     - random: move randomize_page() into mm where it belongs
     - random: unify batched entropy implementations
     - random: convert to using fops->read_iter()
     - random: convert to using fops->write_iter()
     - random: wire up fops->splice_{read,write}_iter()
     - random: check for signals after page of pool writes
     - ALSA: ctxfi: Add SB046x PCI ID
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.120
     - percpu_ref_init(): clean ->percpu_count_ref on failure
     - net: af_key: check encryption module availability consistency
     - nfc: pn533: Fix buggy cleanup order
     - [armhf] net: ftgmac100: Disable hardware checksum on AST2600
     - [x86] i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
     - [arm64] drivers: i2c: thunderx: Allow driver to work with ACPI defined
       TWSI controllers
     - netfilter: nf_tables: disallow non-stateful expression in sets earlier
       (CVE-2022-1966)
     - pipe: make poll_usage boolean and annotate its access
     - pipe: Fix missing lock in pipe_resize_ring() (ZDI-CAN-17291)
     - cfg80211: set custom regdomain after wiphy registration
     - assoc_array: Fix BUG_ON during garbage collect
     - io_uring: don't re-import iovecs from callbacks
     - io_uring: fix using under-expanded iters
     - xfs: detect overflows in bmbt records
     - xfs: show the proper user quota options
     - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
     - xfs: fix an ABBA deadlock in xfs_rename
     - xfs: Fix CIL throttle hang when CIL space used going backwards
     - exfat: check if cluster num is valid
     - crypto: drbg - prepare for more fine-grained tracking of seeding state
     - crypto: drbg - track whether DRBG was seeded with !rng_is_initialized()
     - crypto: drbg - move dynamic ->reseed_threshold adjustments to
       __drbg_seed()
     - crypto: drbg - make reseeding from get_random_bytes() synchronous
     - netfilter: nf_tables: sanitize nft_set_desc_concat_parse() (CVE-2022-1972)
     - netfilter: conntrack: re-fetch conntrack after insertion
     - [x86] kvm: Alloc dummy async #PF token outside of raw spinlock
     - [x86] kvm: use correct GFP flags for preemption disabled
     - [x86] KVM: x86: avoid calling x86 emulator without a decoded instruction
       (CVE-2022-1852)
     - [arm64] crypto: caam - fix i.MX6SX entropy delay value
     - crypto: ecrdsa - Fix incorrect use of vli_cmp
     - zsmalloc: fix races between asynchronous zspage free and page migration
     - Bluetooth: hci_qca: Use del_timer_sync() before freeing
     - dm integrity: fix error code in dm_integrity_ctr()
     - dm crypt: make printing of the key constant-time
     - dm stats: add cond_resched when looping over entries
     - dm verity: set DM_TARGET_IMMUTABLE feature flag
     - raid5: introduce MD_BROKEN
     - HID: multitouch: Add support for Google Whiskers Touchpad
     - HID: multitouch: add quirks to enable Lenovo X12 trackpoint
     - tpm: Fix buffer access in tpm2_get_tpm_pt()
     - docs: submitting-patches: Fix crossref to 'The canonical patch format'
     - NFS: Memory allocation failures are not server fatal errors
     - NFSD: Fix possible sleep during nfsd4_release_lockowner()
     - bpf: Fix potential array overflow in bpf_trampoline_get_progs()
     - bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.115-rt67
   * Bump ABI to 15
   * [rt] Drop "random: Make it work on rt"
 .
   [ Mateusz Łukasik ]
   * [armhf] drivers/thermal: Enable SUN8I_THERMAL as module (Closes: #1007799)
linux (5.10.120-1~bpo10+1) buster-backports; urgency=high
 .
   * Rebuild for buster-backports:
     - Change ABI number to 0.bpo.15
 .
 linux (5.10.120-1) bullseye-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.114
     - USB: quirks: add a Realtek card reader
     - USB: quirks: add STRING quirk for VCOM device
     - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
     - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader
     - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB
     - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
     - xhci: Enable runtime PM on second Alderlake controller
     - xhci: stop polling roothubs after shutdown
     - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
     - iio: dac: ad5592r: Fix the missing return value.
     - iio: dac: ad5446: Fix read_raw not returning set value
     - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
     - iio: imu: inv_icm42600: Fix I2C init possible nack
     - usb: misc: fix improper handling of refcount in uss720_probe()
     - [arm64,x86] usb: typec: ucsi: Fix reuse of completion structure
     - [arm64,x86] usb: typec: ucsi: Fix role swapping
     - usb: gadget: uvc: Fix crash when encoding data for usb request
     - usb: gadget: configfs: clear deactivation flag in
       configfs_composite_unbind()
     - [arm64,armhf] usb: dwc3: Try usb-role-switch first in dwc3_drd_init
     - [arm64,armhf] usb: dwc3: core: Fix tx/rx threshold settings
     - [arm64,armhf] usb: dwc3: core: Only handle soft-reset in DCTL
     - [arm64,armhf] usb: dwc3: gadget: Return proper request status
     - [arm*] usb: phy: generic: Get the vbus supply
     - [arm64,armhf] serial: imx: fix overrun interrupts in DMA mode
     - serial: 8250: Also set sticky MCR bits in console restoration
     - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
     - [arm64,armhf] arch_topology: Do not set llc_sibling if llc_id is invalid
     - hex2bin: make the function hex_to_bin constant-time
     - hex2bin: fix access beyond string end
     - iocost: don't reset the inuse weight of under-weighted debtors
     - video: fbdev: udlfb: properly check endpoint type
     - iio:imu:bmi160: disable regulator in error path
     - USB: Fix xhci event ring dequeue pointer ERDP update issue
     - [armhf] phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
     - [armhf] phy: samsung: exynos5250-sata: fix missing device put in probe
       error paths
     - [armhf] OMAP2+: Fix refcount leak in omap_gic_of_init
     - [armhf] bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific
     - [armhf] phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
     - [armhf] dts: am3517-evm: Fix misc pinmuxing
     - [armhf] dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35
     - ipvs: correctly print the memory size of ip_vs_conn_tab
     - [armhf] pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered
       IRQs in EOI
     - [arm64,armhf] net: dsa: Add missing of_node_put() in
       dsa_port_link_register_of
     - netfilter: nft_set_rbtree: overlap detection with element re-addition
       after deletion
     - bpf, lwt: Fix crash when using bpf_skb_set_tunnel_key() from bpf_xmit lwt
       hook
     - [arm64,armhf] pinctrl: rockchip: fix RK3308 pinmux bits
     - tcp: md5: incorrect tcp_header_len for incoming connections
     - [armhf] pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ
       requested
     - tcp: ensure to use the most recently sent skb when filling the rate sample
     - wireguard: device: check for metadata_dst with skb_valid_dst()
     - sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     - [arm64] dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock
     - [arm64] net: hns3: modify the return code of hclge_get_ring_chain_from_mbx
     - [arm64] net: hns3: add validity check for message data length
     - [arm64] net: hns3: add return value for mailbox handling in PF
     - net/smc: sync err code when tcp connection was refused
     - ip_gre: Make o_seqno start from 0 in native mode
     - ip6_gre: Make o_seqno start from 0 in native mode
     - ip_gre, ip6_gre: Fix race condition on o_seqno in collect_md mode
     - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT
     - tcp: make sure treq->af_specific is initialized
     - [arm64,armhf] bus: sunxi-rsb: Fix the return value of
       sunxi_rsb_device_create()
     - [arm64,armhf] clk: sunxi: sun9i-mmc: check return value after calling
       platform_get_resource()
     - [arm64] net: bcmgenet: hide status block before TX timestamping
     - net: phy: marvell10g: fix return value on error
     - bnx2x: fix napi API usage sequence
     - [arm64,armhf] net: fec: add missing of_node_put() in
       fec_enet_init_stop_mode()
     - ixgbe: ensure IPsec VF<->PF compatibility
     - tcp: fix F-RTO may not work correctly when receiving DSACK
     - [x86] ASoC: Intel: soc-acpi: correct device endpoints for max98373
     - ext4: fix bug_on in start_this_handle during umount filesystem
     - [amd64] x86: __memcpy_flushcache: fix wrong alignment if size > 2^32
     - cifs: destage any unwritten data to the server before calling
       copychunk_write
     - [x86] drivers: net: hippi: Fix deadlock in rr_close()
     - zonefs: Fix management of open zones
     - zonefs: Clear inode information flags on inode creation
     - [x86] drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses
     - [armhf] net: ethernet: stmmac: fix write to sgmii_adapter_base
     - [x86] thermal: int340x: Fix attr.show callback prototype
     - [x86] cpu: Load microcode during restore_processor_state()
     - tty: n_gsm: fix restart handling via CLD command
     - tty: n_gsm: fix decoupled mux resource
     - tty: n_gsm: fix mux cleanup after unregister tty device
     - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2
     - tty: n_gsm: fix malformed counter for out of frame data
     - netfilter: nft_socket: only do sk lookups when indev is available
     - tty: n_gsm: fix insufficient txframe size
     - tty: n_gsm: fix wrong DLCI release order
     - tty: n_gsm: fix missing explicit ldisc flush
     - tty: n_gsm: fix wrong command retry handling
     - tty: n_gsm: fix wrong command frame length field encoding
     - tty: n_gsm: fix reset fifo race condition
     - tty: n_gsm: fix incorrect UA handling
     - tty: n_gsm: fix software flow control handling
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.115
     - [mips*] Fix CP0 counter erratum detection for R4k CPUs
     - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers
     - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
     - [arm64] mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC
     - mmc: core: Set HS clock speed before sending HS CMD13
     - gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
     - [x86] KVM: x86/svm: Account for family 17h event renumberings in
       amd_pmc_perf_hw_id
     - [amd64] iommu/vt-d: Calculate mask for non-aligned flushes
     - Revert "SUNRPC: attempt AF_LOCAL connect on setup"
     - firewire: fix potential uaf in outbound_phy_packet_callback()
     - firewire: remove check of list iterator against head past the loop body
     - firewire: core: extend card->lock in fw_core_handle_bus_reset
     - net: stmmac: disable Split Header (SPH) for Intel platforms
     - genirq: Synchronize interrupt thread startup
     - ASoC: da7219: Fix change notifications for tone generator frequency
     - [s390x] dasd: fix data corruption for ESE devices
     - [s390x] dasd: prevent double format of tracks for ESE devices
     - [s390x] dasd: Fix read for ESE with blksize < 4k
     - [s390x] dasd: Fix read inconsistency for ESE DASD devices
     - can: isotp: remove re-binding of bound socket
     - nfc: replace improper check device_is_registered() in netlink related
       functions (CVE-2022-1974)
     - NFC: netlink: fix sleep in atomic bug when firmware download timeout
       (CVE-2022-1975)
     - [arm64,armhf] gpio: pca953x: fix irq_stat not updated when irq is disabled
       (irq_mask not set)
     - hwmon: (adt7470) Fix warning on module removal
     - [arm*] ASoC: dmaengine: Restore NULL prepare_slave_config() callback
     - net/mlx5e: Fix trust state reset in reload
     - net/mlx5e: Don't match double-vlan packets if cvlan is not set
     - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft
       release
     - net/mlx5e: Fix the calling of update_buffer_lossy() API
     - net/mlx5: Avoid double clear or set of sync reset requested
     - NFSv4: Don't invalidate inode attributes on delegation return
     - [arm64,armhf] net: stmmac: dwmac-sun8i: add missing of_node_put() in
       sun8i_dwmac_register_mdio_mux()
     - [armhf] net: cpsw: add missing of_node_put() in cpsw_probe_dt()
     - hinic: fix bug of wq out of bound access
     - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
     - bnxt_en: Fix unnecessary dropping of RX packets
     - [arm64,armhf] smsc911x: allow using IRQ0
     - btrfs: always log symlinks in full mode
     - net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
     - [x86] kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has
       architectural PMU
     - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu
     - [x86] kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
     - [x86] KVM: x86: Do not change ICR on write to APIC_SELF_IPI
     - [x86] KVM: x86/mmu: avoid NULL-pointer dereference on page freeing bugs
     - [x86] KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is
       advertised
     - rcu: Fix callbacks processing time limit retaining cond_resched()
     - rcu: Apply callbacks processing time limit only on softirq
     - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
       (CVE-2022-0494)
     - dm: interlock pending dm_io and dm_wait_for_bios_completion
     - [arm64] PCI: aardvark: Clear all MSIs at setup
     - [arm64] PCI: aardvark: Fix reading MSI interrupt number
     - mmc: rtsx: add 74 Clocks in power on flow
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.116
     - regulator: consumer: Add missing stubs to regulator/consumer.h
     - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
     - nfp: bpf: silence bitwise vs. logical OR warning
     - Bluetooth: Fix the creation of hdev->name
     - mm: fix missing cache flush for all tail pages of compound page
     - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
     - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and
       __mcopy_atomic()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.117
     - batman-adv: Don't skb_split skbuffs with frag_list
     - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing
     - hwmon: (tmp401) Add OF device ID table
     - mac80211: Reset MBSSID parameters upon connection
     - net: Fix features skip in for_each_netdev_feature()
     - [arm64] net: mscc: ocelot: fix last VCAP IS1/IS2 filter persisting in
       hardware when deleted
     - [arm64] net: mscc: ocelot: fix VCAP IS2 filters matching on both lookups
     - [arm64] net: mscc: ocelot: restrict tc-trap actions to VCAP IS2 lookup 0
     - [arm64] net: mscc: ocelot: avoid corrupting hardware counters when moving
       VCAP filters
     - ipv4: drop dst in multicast routing path
     - drm/nouveau: Fix a potential theorical leak in
       nouveau_get_backlight_name()
     - netlink: do not reset transport header in netlink_recvmsg()
     - sfc: Use swap() instead of open coding it
     - net: sfc: fix memory leak due to ptp channel
     - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
     - nfs: fix broken handling of the softreval mount option
     - dim: initialize all struct fields
     - [s390x] ctcm: fix variable dereferenced before check
     - [s390x] ctcm: fix potential memory leak
     - [s390x] lcs: fix variable dereferenced before check
     - net/sched: act_pedit: really ensure the skb is writable
     - [arm64] net: bcmgenet: Check for Wake-on-LAN interrupt probe deferral
     - [armhf] net: dsa: bcm_sf2: Fix Wake-on-LAN with mac_link_down()
     - net/smc: non blocking recvmsg() return -EAGAIN when no data and
       signal_pending
     - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
     - gfs2: Fix filesystem block deallocation for short writes
     - hwmon: (f71882fg) Fix negative temperature
     - ASoC: max98090: Reject invalid values in custom control put()
     - ASoC: max98090: Generate notifications on changes for custom control
     - ASoC: ops: Validate input values in snd_soc_put_volsw_range()
     - net: sfp: Add tx-fault workaround for Huawei MA5671A SFP ONT
     - tcp: resalt the secret every 10 seconds (CVE-2022-1012)
     - firmware_loader: use kernel credentials when reading firmware
     - tty: n_gsm: fix mux activation issues in gsm_config()
     - usb: cdc-wdm: fix reading stuck on device close
     - USB: serial: pl2303: add device id for HP LM930 Display
     - USB: serial: qcserial: add support for Sierra Wireless EM7590
     - USB: serial: option: add Fibocom L610 modem
     - USB: serial: option: add Fibocom MA510 modem
     - ceph: fix setting of xattrs on async created inodes
     - drm/nouveau/tegra: Stop using iommu_present()
     - i40e: i40e_main: fix a missing check on list iterator
     - [amd64,arm64] net: atlantic: always deep reset on pm op, fixing up my null
       deref regression
     - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
     - [x86] drm/vmwgfx: Initialize drm_mode_fb_cmd2
     - SUNRPC: Clean up scheduling of autoclose
     - SUNRPC: Prevent immediate close+reconnect
     - SUNRPC: Don't call connect() more than once on a TCP socket
     - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
       (CVE-2022-28893)
     - net: phy: Fix race condition on link status change
     - [arm*] arm[64]/memremap: don't abuse pfn_valid() to ensure presence of
       linear map
     - ping: fix address binding wrt vrf
     - usb: gadget: uvc: rename function to be more consistent
     - usb: gadget: uvc: allow for application to cleanly shutdown
     - io_uring: always use original task when preparing req identity
       (CVE-2022-1786)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.118
     - io_uring: always grab file table for deferred statx
     - floppy: use a statically allocated error counter
     - [x86] Revert "drm/i915/opregion: check port number bounds for SWSCI
       display power state"
     - igc: Remove _I_PHY_ID checking
     - igc: Remove phy->type checking
     - igc: Update I226_K device ID
     - rtc: fix use-after-free on device removal
     - [arm64] rtc: pcf2127: fix bug when reading alarm registers
     - Input: add bounds checking to input_set_capability()
     - nvme-pci: add quirks for Samsung X5 SSDs
     - gfs2: Disable page faults during lockless buffered reads
     - [arm64,armhf] rtc: sun6i: Fix time overflow handling
     - [armhf] crypto: stm32 - fix reference leak in stm32_crc_remove
     - [amd64] crypto: x86/chacha20 - Avoid spurious jumps to other functions
     - ALSA: hda/realtek: Enable headset mic on Lenovo P360
     - [s390x] pci: improve zpci_dev reference counting
     - nvme-multipath: fix hang when disk goes live over reconnect
     - rtc: mc146818-lib: Fix the AltCentury for AMD platforms
     - fs: fix an infinite loop in iomap_fiemap
     - drbd: remove usage of list iterator variable after loop
     - [arm64] platform/chrome: cros_ec_debugfs: detach log reader wq from devm
     - [armel,armhf] 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in
       unwind_frame()
     - nilfs2: fix lockdep warnings in page operations for btree nodes
     - nilfs2: fix lockdep warnings during disk space reclamation
     - Revert "swiotlb: fix info leak with DMA_FROM_DEVICE"
     - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
       (CVE-2022-0854)
     - ALSA: usb-audio: Restore Rane SL-1 quirk
     - [i386] ALSA: wavefront: Proper check of get_user() error
     - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
     - perf: Fix sys_perf_event_open() race against self (CVE-2022-1729)
     - selinux: fix bad cleanup on error in hashtab_duplicate()
     - Fix double fget() in vhost_net_set_backend()
     - PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
     - [x86] KVM: x86/mmu: Update number of zapped pages even if page list is
       stable
     - [arm64] paravirt: Use RCU read locks to guard stolen_time
     - [arm64] mte: Ensure the cleared tags are visible before setting the PTE
     - [arm64] crypto: qcom-rng - fix infinite loop on requests not multiple of
       WORD_SZ
     - libceph: fix potential use-after-free on linger ping and resends
     - drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
     - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
     - [armhf] pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl
     - [arm64] net: macb: Increment rx bd head after allocating skb and buffer
     - net: evaluate net.ipvX.conf.all.disable_policy and disable_xfrm
     - xfrm: Add possibility to set the default to block if we have no policy
     - net: xfrm: fix shift-out-of-bounce
     - xfrm: make user policy API complete
     - xfrm: notify default policy on update
     - xfrm: fix dflt policy check when there is no policy configured
     - xfrm: rework default policy structure
     - xfrm: fix "disable_policy" flag use when arriving from different devices
     - net/sched: act_pedit: sanitize shift argument before usage
     - [x86] net: vmxnet3: fix possible use-after-free bugs in
       vmxnet3_rq_alloc_rx_buf()
     - [x86] net: vmxnet3: fix possible NULL pointer dereference in
       vmxnet3_rq_cleanup()
     - ice: fix possible under reporting of ethtool Tx and Rx statistics
     - net/qla3xxx: Fix a test in ql_reset_work()
     - net/mlx5e: Properly block LRO when XDP is enabled
     - net: af_key: add check for pfkey_broadcast in function pfkey_process
     - [armhf] 9196/1: spectre-bhb: enable for Cortex-A15
     - [armel,armhf] 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
     - igb: skip phy status check where unavailable
     - net: bridge: Clear offload_fwd_mark when passing frame up bridge
       interface.
     - [arm*] gpio: mvebu/pwm: Refuse requests with inverted polarity
     - scsi: qla2xxx: Fix missed DMA unmap for aborted commands
     - mac80211: fix rx reordering with non explicit / psmp ack policy
     - nl80211: validate S1G channel width
     - nl80211: fix locking in nl80211_set_tx_bitrate_mask()
     - ethernet: tulip: fix missing pci_disable_device() on error in
       tulip_init_one()
     - [amd64,arm64] net: atlantic: fix "frag[0] not initialized"
     - [amd64,arm64] net: atlantic: reduce scope of is_rsc_complete
     - [amd64,arm64] net: atlantic: add check for MAX_SKB_FRAGS
     - [amd64,arm64] net: atlantic: verify hw_head_ lies within TX buffer ring
     - [arm64] Enable repeat tlbi workaround on KRYO4XX gold CPUs
     - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group
     - afs: Fix afs_getattr() to refetch file status if callback break occurred
     - include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.119
     - lockdown: also lock down previous kgdb use (CVE-2022-21499)
     - staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
     - [x86] KVM: x86: Properly handle APF vs disabled LAPIC situation
     - [x86] KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
       (CVE-2022-1789)
     - tcp: change source port randomizarion at connect() time
     - secure_seq: use the 64 bits of the siphash for port offset calculation
       (CVE-2022-1012)
     - ACPI: sysfs: Make sparse happy about address space in use
     - ACPI: sysfs: Fix BERT error region memory mapping
     - random: avoid arch_get_random_seed_long() when collecting IRQ randomness
     - random: remove dead code left over from blocking pool
     - MAINTAINERS: co-maintain random.c
     - MAINTAINERS: add git tree for random.c
     - crypto: lib/blake2s - Move selftest prototype into header file
     - crypto: blake2s - define shash_alg structs using macros
     - [amd64] crypto: x86/blake2s - define shash_alg structs using macros
     - crypto: blake2s - remove unneeded includes
     - crypto: blake2s - move update and final logic to internal/blake2s.h
     - crypto: blake2s - share the "shash" API boilerplate code
     - crypto: blake2s - optimize blake2s initialization
     - crypto: blake2s - add comment for blake2s_state fields
     - crypto: blake2s - adjust include guard naming
     - crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h>
     - lib/crypto: blake2s: include as built-in
     - lib/crypto: blake2s: move hmac construction into wireguard
     - lib/crypto: sha1: re-roll loops to reduce code size
     - lib/crypto: blake2s: avoid indirect calls to compression function for
       Clang CFI
     - random: document add_hwgenerator_randomness() with other input functions
     - random: remove unused irq_flags argument from add_interrupt_randomness()
     - random: use BLAKE2s instead of SHA1 in extraction
     - random: do not sign extend bytes for rotation when mixing
     - random: do not re-init if crng_reseed completes before primary init
     - random: mix bootloader randomness into pool
     - random: harmonize "crng init done" messages
     - random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs
     - random: early initialization of ChaCha constants
     - random: avoid superfluous call to RDRAND in CRNG extraction
     - random: don't reset crng_init_cnt on urandom_read()
     - random: fix typo in comments
     - random: cleanup poolinfo abstraction
     - random: cleanup integer types
     - random: remove incomplete last_data logic
     - random: remove unused extract_entropy() reserved argument
     - random: rather than entropy_store abstraction, use global
     - random: remove unused OUTPUT_POOL constants
     - random: de-duplicate INPUT_POOL constants
     - random: prepend remaining pool constants with POOL_
     - random: cleanup fractional entropy shift constants
     - random: access input_pool_data directly rather than through pointer
     - random: selectively clang-format where it makes sense
     - random: simplify arithmetic function flow in account()
     - random: continually use hwgenerator randomness
     - random: access primary_pool directly rather than through pointer
     - random: only call crng_finalize_init() for primary_crng
     - random: use computational hash for entropy extraction
     - random: simplify entropy debiting
     - random: use linear min-entropy accumulation crediting
     - random: always wake up entropy writers after extraction
     - random: make credit_entropy_bits() always safe
     - random: remove use_input_pool parameter from crng_reseed()
     - random: remove batched entropy locking
     - random: fix locking in crng_fast_load()
     - random: use RDSEED instead of RDRAND in entropy extraction
     - random: get rid of secondary crngs
     - random: inline leaves of rand_initialize()
     - random: ensure early RDSEED goes through mixer on init
     - random: do not xor RDRAND when writing into /dev/random
     - random: absorb fast pool into input pool after fast load
     - random: use simpler fast key erasure flow on per-cpu keys
     - random: use hash function for crng_slow_load()
     - random: make more consistent use of integer types
     - random: remove outdated INT_MAX >> 6 check in urandom_read()
     - random: zero buffer after reading entropy from userspace
     - random: fix locking for crng_init in crng_reseed()
     - random: tie batched entropy generation to base_crng generation
     - random: remove ifdef'd out interrupt bench
     - random: remove unused tracepoints
     - random: add proper SPDX header
     - random: deobfuscate irq u32/u64 contributions
     - random: introduce drain_entropy() helper to declutter crng_reseed()
     - random: remove useless header comment
     - random: remove whitespace and reorder includes
     - random: group initialization wait functions
     - random: group crng functions
     - random: group entropy extraction functions
     - random: group entropy collection functions
     - random: group userspace read/write functions
     - random: group sysctl functions
     - random: rewrite header introductory comment
     - random: defer fast pool mixing to worker
     - random: do not take pool spinlock at boot
     - random: unify early init crng load accounting
     - random: check for crng_init == 0 in add_device_randomness()
     - random: pull add_hwgenerator_randomness() declaration into random.h
     - random: clear fast pool, crng, and batches in cpuhp bring up
     - random: round-robin registers as ulong, not u32
     - random: only wake up writers after zap if threshold was passed
     - random: cleanup UUID handling
     - random: unify cycles_t and jiffies usage and types
     - random: do crng pre-init loading in worker rather than irq
     - random: give sysctl_random_min_urandom_seed a more sensible value
     - random: don't let 644 read-only sysctls be written to
     - random: replace custom notifier chain with standard one
     - random: use SipHash as interrupt entropy accumulator
     - random: make consistent usage of crng_ready()
     - random: reseed more often immediately after booting
     - random: check for signal and try earlier when generating entropy
     - random: skip fast_init if hwrng provides large chunk of entropy
     - random: treat bootloader trust toggle the same way as cpu trust toggle
     - random: re-add removed comment about get_random_{u32,u64} reseeding
     - random: mix build-time latent entropy into pool at init
     - random: do not split fast init input in add_hwgenerator_randomness()
     - random: do not allow user to keep crng key around on stack
     - random: check for signal_pending() outside of need_resched() check
     - random: check for signals every PAGE_SIZE chunk of /dev/[u]random
     - random: allow partial reads if later user copies fail
     - random: make random_get_entropy() return an unsigned long
     - random: document crng_fast_key_erasure() destination possibility
     - random: fix sysctl documentation nits
     - init: call time_init() before rand_initialize()
     - [s390x] define get_cycles macro for arch-override
     - [powerpc*] define get_cycles macro for arch-override
     - timekeeping: Add raw clock fallback for random_get_entropy()
     - [mips*] use fallback for random_get_entropy() instead of just c0 random
     - [arm*] use fallback for random_get_entropy() instead of zero
     - [x86] tsc: Use fallback for random_get_entropy() instead of zero
     - random: insist on random_get_entropy() existing in order to simplify
     - random: do not use batches when !crng_ready()
     - random: use first 128 bits of input as fast init
     - random: do not pretend to handle premature next security model
     - random: order timer entropy functions below interrupt functions
     - random: do not use input pool from hard IRQs
     - random: help compiler out with fast_mix() by using simpler arguments
     - siphash: use one source of truth for siphash permutations
     - random: use symbolic constants for crng_init states
     - random: avoid initializing twice in credit race
     - random: move initialization out of reseeding hot path
     - random: remove ratelimiting for in-kernel unseeded randomness
     - random: use proper jiffies comparison macro
     - random: handle latent entropy and command line from random_init()
     - random: credit architectural init the exact amount
     - random: use static branch for crng_ready()
     - random: remove extern from functions in header
     - random: use proper return types on get_random_{int,long}_wait()
     - random: make consistent use of buf and len
     - random: move initialization functions out of hot pages
     - random: move randomize_page() into mm where it belongs
     - random: unify batched entropy implementations
     - random: convert to using fops->read_iter()
     - random: convert to using fops->write_iter()
     - random: wire up fops->splice_{read,write}_iter()
     - random: check for signals after page of pool writes
     - ALSA: ctxfi: Add SB046x PCI ID
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.120
     - percpu_ref_init(): clean ->percpu_count_ref on failure
     - net: af_key: check encryption module availability consistency
     - nfc: pn533: Fix buggy cleanup order
     - [armhf] net: ftgmac100: Disable hardware checksum on AST2600
     - [x86] i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
     - [arm64] drivers: i2c: thunderx: Allow driver to work with ACPI defined
       TWSI controllers
     - netfilter: nf_tables: disallow non-stateful expression in sets earlier
       (CVE-2022-1966)
     - pipe: make poll_usage boolean and annotate its access
     - pipe: Fix missing lock in pipe_resize_ring() (ZDI-CAN-17291)
     - cfg80211: set custom regdomain after wiphy registration
     - assoc_array: Fix BUG_ON during garbage collect
     - io_uring: don't re-import iovecs from callbacks
     - io_uring: fix using under-expanded iters
     - xfs: detect overflows in bmbt records
     - xfs: show the proper user quota options
     - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
     - xfs: fix an ABBA deadlock in xfs_rename
     - xfs: Fix CIL throttle hang when CIL space used going backwards
     - exfat: check if cluster num is valid
     - crypto: drbg - prepare for more fine-grained tracking of seeding state
     - crypto: drbg - track whether DRBG was seeded with !rng_is_initialized()
     - crypto: drbg - move dynamic ->reseed_threshold adjustments to
       __drbg_seed()
     - crypto: drbg - make reseeding from get_random_bytes() synchronous
     - netfilter: nf_tables: sanitize nft_set_desc_concat_parse() (CVE-2022-1972)
     - netfilter: conntrack: re-fetch conntrack after insertion
     - [x86] kvm: Alloc dummy async #PF token outside of raw spinlock
     - [x86] kvm: use correct GFP flags for preemption disabled
     - [x86] KVM: x86: avoid calling x86 emulator without a decoded instruction
       (CVE-2022-1852)
     - [arm64] crypto: caam - fix i.MX6SX entropy delay value
     - crypto: ecrdsa - Fix incorrect use of vli_cmp
     - zsmalloc: fix races between asynchronous zspage free and page migration
     - Bluetooth: hci_qca: Use del_timer_sync() before freeing
     - dm integrity: fix error code in dm_integrity_ctr()
     - dm crypt: make printing of the key constant-time
     - dm stats: add cond_resched when looping over entries
     - dm verity: set DM_TARGET_IMMUTABLE feature flag
     - raid5: introduce MD_BROKEN
     - HID: multitouch: Add support for Google Whiskers Touchpad
     - HID: multitouch: add quirks to enable Lenovo X12 trackpoint
     - tpm: Fix buffer access in tpm2_get_tpm_pt()
     - docs: submitting-patches: Fix crossref to 'The canonical patch format'
     - NFS: Memory allocation failures are not server fatal errors
     - NFSD: Fix possible sleep during nfsd4_release_lockowner()
     - bpf: Fix potential array overflow in bpf_trampoline_get_progs()
     - bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.115-rt67
   * Bump ABI to 15
   * [rt] Drop "random: Make it work on rt"
 .
   [ Mateusz Łukasik ]
   * [armhf] drivers/thermal: Enable SUN8I_THERMAL as module (Closes: #1007799)
 .
 linux (5.10.113-1) bullseye-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.107
     - Revert "xfrm: state and policy should fail if XFRMA_IF_ID 0"
       (Closes: #1008299)
     - xfrm: Check if_id in xfrm_migrate
     - xfrm: Fix xfrm migrate issues when address family changes
     - mac80211: refuse aggregations sessions before authorized
     - [mips64el,mipsel] smp: fill in sibling and core maps earlier
     - [x86] atm: firestream: check the return value of ioremap() in fs_init()
     - iwlwifi: don't advertise TWT support
     - drm/vrr: Set VRR capable prop only if it is attached to connector
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - sfc: extend the locking on mcdi->seqno
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.108
     - [arm64] crypto: qcom-rng - ensure buffer for generate is completely filled
     - ocfs2: fix crash when initialize filecheck kobj fails
     - mm: swap: get rid of livelock in swapin readahead
     - efi: fix return value of __setup handlers
     - vsock: each transport cycles only on its own sockets
     - esp6: fix check on ipv6_skip_exthdr's return value
     - net: phy: marvell: Fix invalid comparison in the resume and suspend
       functions
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - [x86] hv_netvsc: Add check for kvmalloc_array
     - [armhf] drm/imx: parallel-display: Remove bus flags check in
       imx_pd_bridge_atomic_check()
     - [arm64,armhf] drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - [arm64,armhf] net: dsa: Add missing of_node_put() in dsa_port_parse_of
     - net: phy: mscc: Add MODULE_FIRMWARE macros
     - bnx2x: fix built-in kernel driver load failure
     - [arm64] net: bcmgenet: skip invalid partial checksums
     - [arm64] net: mscc: ocelot: fix backwards compatibility with single-chain
       tc-flower offload
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - usb: usbtmc: Fix bug in pipe direction for control transfers
     - scsi: mpt3sas: Page fault in reply q processing
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: usb: Correct PHY handling of smsc95xx
     - net: usb: Correct reset handling of smsc95xx
     - smsc95xx: Ignore -ENODEV errors when device is unplugged
     - esp: Fix possible buffer overflow in ESP transformation (CVE-2022-27666)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.109
     - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
       (CVE-2022-26490)
     - net: ipv6: fix skb_over_panic in __ip6_append_data
     - exfat: avoid incorrectly releasing for root inode
     - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv
       (CVE-2021-4197)
     - cgroup: Use open-time cgroup namespace for process migration perm checks
       (CVE-2021-4197)
     - cgroup-v1: Correct privileges check in release_agent writes
     - tpm: Fix error handling in async work
     - llc: fix netdevice reference leaks in llc_ui_bind() (CVE-2022-28356)
     - ALSA: oss: Fix PCM OSS buffer allocation overflow
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
     - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
     - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
     - ALSA: hda/realtek: Add quirk for ASUS GA402
     - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent read/write and buffer changes
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prealloc proc writes (CVE-2022-1048)
     - ALSA: pcm: Add stream lock during PCM reset ioctl operations
     - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
     - ALSA: cmipci: Restore aux vol on suspend/resume
     - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
     - [arm64] drivers: net: xgene: Fix regression in CRC stripping
     - netfilter: nf_tables: initialize registers in nft_do_chain()
       (CVE-2022-1016)
     - [x86] ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
     - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
     - [x86] ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
     - [x86] crypto: qat - disable registration of algorithms
     - Revert "ath: add support for special 0x0 regulatory domain"
     - rcu: Don't deboost before reporting expedited quiescent state
     - mac80211: fix potential double free on mesh join
     - tpm: use try_get_ops() in tpm-space.c
     - [arm64] wcn36xx: Differentiate wcn3660 from wcn3620
     - llc: only change llc->dev when bind() succeeds
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.110
     - swiotlb: fix info leak with DMA_FROM_DEVICE (CVE-2022-0854)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - HID: logitech-dj: add new lightspeed receiver id
     - xfrm: fix tunnel model fragmentation behavior
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - gpio: Revert regression in sysfs-gpio (gpiolib.c)
     - spi: Fix invalid sgs value
     - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register (CVE-2022-1353)
     - [arm*] iommu/iova: Improve 32-bit free space estimate
     - tpm: fix reference counting for struct tpm_chip
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - xhci: fix garbage USBSTS being logged in some cases
     - xhci: fix runtime PM imbalance in USB2 resume
     - xhci: make xhci_handshake timeout for xhci_reset() adjustable
     - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
     - [x86] mei: me: add Alder Lake N device id.
     - [x86] mei: avoid iterator usage outside of list_for_each_entry
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
     - KEYS: fix length validation in keyctl_pkey_params_get_2()
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - firmware: stratix10-svc: add missing callback parameter on RSU
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - NFSD: prevent integer overflow on 32 bit systems
     - f2fs: fix to unlock page correctly in error path of is_alive()
     - f2fs: quota: fix loop condition at f2fs_quota_sync()
     - f2fs: fix to do sanity check on .cp_pack_total_block_count
     - [armhf] remoteproc: Fix count check in rproc_coredump_write()
     - [armhf] pinctrl: samsung: drop pin banks references on error paths
     - mtd: rawnand: protect access to rawnand devices while in suspend
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28390)
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mm: invalidate hwpoison page cache page in fault path
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - cifs: prevent bad output lengths in smb2_ioctl_query_info()
     - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
       (CVE-2022-0168)
     - [i386] ALSA: cs4236: fix an incorrect NULL check on list iterator
     - ALSA: hda: Avoid unsol event during RPM suspending
     - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
     - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
     - mm: madvise: skip unmapped vma holes passed to process_madvise
     - mm: madvise: return correct bytes advised with process_madvise
     - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
     - mm,hwpoison: unmap poisoned page before invalidation
     - dm integrity: set journal entry unused when shrinking device
     - drbd: fix potential silent data corruption
     - can: isotp: sanitize CAN ID checks in isotp_bind()
     - [powerpc*] kvm: Fix kvm_use_magic_page
     - udp: call udp_encap_enable for v6 sockets when enabling encap
     - [arm64] signal: nofpsimd: Do not allocate fp/simd context when not
       available
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - coredump: Also dump first pages of non-executable ELF libraries
     - ext4: fix ext4_fc_stats trace point
     - ext4: fix fs corruption when tring to remove a non-empty directory with IO
       error
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
       (CVE-2022-1198)
     - block: limit request dispatch loop duration
     - block: don't merge across cgroup boundaries if blkcg is enabled
     - drm/edid: check basic audio support on CEA extension block
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5250
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5420
     - [x86] mgag200 fix memmapsl configuration in GCTL6 register
     - carl9170: fix missing bit-wise or operator for tx_params
     - pstore: Don't use semaphores in always-atomic-context code
     - [x86] thermal: int340x: Increase bitmap size
     - exec: Force single empty string when argv is empty
     - crypto: rsa-pkcs1pad - only allow with rsa
     - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
     - crypto: rsa-pkcs1pad - restore signature length check
     - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
     - bcache: fixup multiple threads crash
     - DEC: Limit PMAX memory probing to R3k systems
     - brcmfmac: firmware: Allocate space for default boardrev in nvram
     - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
     - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
     - brcmfmac: pcie: Fix crashes due to early IRQs
     - [x86] drm/i915/opregion: check port number bounds for SWSCI display power
       state
     - [x86] drm/i915/gem: add missing boundary check in vm_access
     - PCI: pciehp: Clear cmd_busy bit in polling mode
     - [arm64] PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
     - [arm64] regulator: qcom_smd: fix for_each_child.cocci warnings
     - selinux: check return value of sel_make_avc_files
     - [arm64] hwrng: cavium - Check health status while reading random data
     - [arm64] hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
     - crypto: authenc - Fix sleep in atomic context in decrypt_tail
     - [x86] thermal: int340x: Check for NULL after calling kmemdup()
     - [arm64,armhf] spi: tegra114: Add missing IRQ check in tegra_spi_probe
     - [arm64] mm: avoid fixmap race condition when create pud mapping
     - audit: log AUDIT_TIME_* records only from rules
     - spi: pxa2xx-pci: Balance reference count for PCI DMA device
     - [armhf] hwmon: (pmbus) Add mutex to regulator ops
     - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
     - nvme: cleanup __nvme_check_ids
     - block: don't delete queue kobject before its children
     - PM: hibernate: fix __setup handler error handling
     - PM: suspend: fix return value of __setup handler
     - [arm64] crypto: sun8i-ce - call finalize with bh disabled
     - [arm64,armhf] crypto: amlogic - call finalize with bh disabled
     - [armhf] clocksource/drivers/timer-ti-dm: Fix regression from errata i940
       fix
     - [armhf] clocksource/drivers/exynos_mct: Refactor resources allocation
     - [armhf] clocksource/drivers/exynos_mct: Handle DTS with higher number of
       interrupts
     - clocksource/drivers/timer-of: Check return value of of_iomap in
       timer_of_base_init()
     - ACPI: APEI: fix return value of __setup handlers
     - [x86] crypto: ccp - ccp_dmaengine_unregister release dma channels
     - [arm*] amba: Make the remove callback return void
     - [armhf] hwmon: (pmbus) Add Vin unit off handling
     - [x86] clocksource: acpi_pm: fix return value of __setup handler
     - io_uring: terminate manual loop iterator loop correctly for non-vecs
     - watch_queue: Fix NULL dereference in error cleanup
     - watch_queue: Actually free the watch
     - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
     - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
     - sched/core: Export pelt_thermal_tp
     - rseq: Optimise rseq_get_rseq_cs() and clear_rseq_cs()
     - rseq: Remove broken uapi field layout on 32-bit little endian
     - perf/core: Fix address filter parser for multiple filters
     - [x86] perf/x86/intel/pt: Fix address filter config for 32-bit kernel
     - f2fs: fix missing free nid in f2fs_handle_failed_inode
     - nfsd: more robust allocation failure handling in nfsd_file_cache_init
     - f2fs: fix to avoid potential deadlock
     - btrfs: fix unexpected error path when reflinking an inline extent
     - f2fs: compress: remove unneeded read when rewrite whole cluster
     - f2fs: fix compressed file start atomic write may cause data corruption
     - [arm64,armhf] media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP
       buffers across ioctls
     - media: bttv: fix WARNING regression on tunerless devices
     - [arm*] ASoC: generic: simple-card-utils: remove useless assignment
     - [armhf] media: coda: Fix missing put_device() call in coda_get_vdoa_data
     - [armhf] media: aspeed: Correct value for h-total-pixels
     - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
       avoid black screen
     - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
     - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
     - [arm64] firmware: qcom: scm: Remove reassignment to desc following
       initializer
     - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is
       not defined
     - [armhf] dts: imx: Add missing LVDS decoder on M53Menlo
     - media: em28xx: initialize refcount before kref_get
     - media: usb: go7007: s2250-board: fix leak in probe()
     - [arm64,armhf] media: cedrus: H265: Fix neighbour info buffer size
     - [arm64,armhf] media: cedrus: h264: Fix neighbour info buffer size
     - [x86] ASoC: rt5663: check the return value of devm_kzalloc() in
       rt5663_parse_dp()
     - printk: fix return value of printk.devkmsg __setup handler
     - [x86] ASoC: soc-compress: prevent the potentially use of null pointer
     - [armhf] memory: emif: Add check for setup_interrupts
     - [armhf] memory: emif: check the pointer temp in get_device_details()
     - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
     - [arm64] dts: rockchip: Fix SDIO regulator supply properties on
       rk3399-firefly
     - media: stk1160: If start stream fails, return buffers with
       VB2_BUF_STATE_QUEUED
     - media: saa7134: convert list_for_each to entry variant
     - media: saa7134: fix incorrect use to determine if list is empty
     - ivtv: fix incorrect device_caps for ivtvfb
     - [arm64,armhf] ASoC: rockchip: i2s: Use
       devm_platform_get_and_ioremap_resource()
     - [arm64,armhf] ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
       rockchip_i2s_probe
     - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
     - [armhf] ASoC: fsl_spdif: Disable TX clock when stop
     - [armhf] ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
     - [arm64] drm/meson: osd_afbcd: Add an exit callback to struct
       meson_afbcd_ops
     - [arm64,armhf] drm/bridge: Add missing pm_runtime_disable() in
       __dw_mipi_dsi_probe
     - [arm64] drm: bridge: adv7511: Fix ADV7535 HPD enablement
     - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
     - [arm64,armhf] drm/panfrost: Check for error num after setting mask
     - Bluetooth: hci_serdev: call init_rwsem() before p->open()
     - [armhf] mtd: rawnand: gpmi: fix controller timings setting
     - drm/edid: Don't clear formats if using deep color
     - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
     - drm/amd/display: Fix a NULL pointer dereference in
       amdgpu_dm_connector_add_common_modes()
     - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
     - ath9k_htc: fix uninit value bugs
     - RDMA/core: Set MR type in ib_reg_user_mr
     - [powerpc*] KVM: PPC: Fix vmx/vsx mixup in mmio emulation
     - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
     - i40e: respect metadata on XSK Rx to skb
     - [x86] ray_cs: Check ioremap return value
     - [powerpc*] KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
     - [powerpc*] perf: Don't use perf_hw_context for trace IMC PMU
     - [arm64,armhf] net: dsa: mv88e6xxx: Enable port policy support on 6097
     - [arm64] PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated
       bridge
     - [arm64,armhf] drm/bridge: dw-hdmi: use safe format when first in bridge
       chain
     - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
     - drm/amd/pm: enable pm sysfs write for one VF mode
     - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
     - IB/cma: Allow XRC INI QPs to set their local ACK timeout
     - dax: make sure inodes are flushed before destroy cache
     - iwlwifi: Fix -EIO error code that is never returned
     - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
     - [arm64] drm/msm/dp: populate connector of struct dp_panel
     - [arm64] drm/msm/dpu: add DSPP blocks teardown
     - [arm64] drm/msm/dpu: fix dp audio condition
     - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
     - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
     - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
     - scsi: pm8001: Fix le32 values handling in
       pm80xx_set_sas_protocol_timer_config()
     - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
     - scsi: pm8001: Fix NCQ NON DATA command task initialization
     - scsi: pm8001: Fix NCQ NON DATA command completion handling
     - scsi: pm8001: Fix abort all task initialization
     - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
     - drm/amd/display: Remove vupdate_int_entry definition
     - TOMOYO: fix __setup handlers return values
     - [arm64,armhf] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
     - [x86] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong
       false return
     - [arm64] scsi: hisi_sas: Change permission of parameter prot_mask
     - [arm64] bpf, arm64: Call build_prologue() first in first JIT pass
     - [arm64] bpf, arm64: Feed byte-offset into bpf line info
     - [arm64,armhf] gpu: host1x: Fix a memory leak in 'host1x_remove()'
     - [powerpc*] mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
     - [x86] KVM: x86: Fix emulation in writing cr8
     - [x86] KVM: x86/emulator: Defer not-present segment check in
       __load_segment_descriptor()
     - [x86] hv_balloon: rate-limit "Unhandled message" warning
     - [amd64] IB/hfi1: Allow larger MTU without AIP
     - PCI: Reduce warnings on possible RW1C corruption
     - [armhf] mfd: mc13xxx: Add check for mc13xxx_irq_request
     - [x86] platform/x86: huawei-wmi: check the return value of
       device_create_file()
     - vxcan: enable local echo for sent CAN frames
     - ath10k: Fix error handling in ath10k_setup_msa_resources
     - [mips*] pgalloc: fix memory leak caused by pgd_free()
     - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
     - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
     - bpf, sockmap: Fix more uncharged while msg has more_data
     - bpf, sockmap: Fix double uncharge the mem of sk_msg
     - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
     - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
     - can: isotp: support MSG_TRUNC flag when reading from socket
     - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
     - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
     - af_netlink: Fix shift out of bounds in group mask calculation
     - [arm64,armhf] i2c: meson: Fix wrong speed use from probe
     - PCI: Avoid broken MSI on SB600 USB devices
     - [arm64] net: bcmgenet: Use stronger register read/writes to assure
       ordering
     - tcp: ensure PMTU updates are processed during fastopen
     - openvswitch: always update flow key after nat
     - tipc: fix the timer expires after interval 100ms
     - [x86] mxser: fix xmit_buf leak in activate when LSR == 0xff
     - [armhf] fsi: aspeed: convert to devm_platform_ioremap_resource
     - [armhf] fsi: Aspeed: Fix a potential double free
     - soundwire: intel: fix wrong register name in intel_shim_wake
     - iio: mma8452: Fix probe failing when an i2c_device_id is used
     - [arm64,armhf] phy: dphy: Correct lpx parameter and its
       derivatives(ta_{get,go,sure})
     - [x86] serial: 8250_mid: Balance reference count for PCI DMA device
     - [x86] serial: 8250_lpss: Balance reference count for PCI DMA device
     - NFS: Use of mapping_set_error() results in spurious errors
     - serial: 8250: Fix race condition in RTS-after-send handling
     - NFS: Return valid errors from nfs2/3_decode_dirent()
     - [arm64] clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
     - [arm64] clk: qcom: clk-rcg2: Update the frac table for pixel clock
     - nvdimm/region: Fix default alignment for small regions
     - [armhf] clk: tegra: tegra124-emc: Fix missing put_device() call in
       emc_ensure_emc_driver
     - NFS: remove unneeded check in decode_devicenotify_args()
     - [arm64,armhf] pinctrl/rockchip: Add missing of_node_put() in
       rockchip_pinctrl_probe
     - [s390x] tty: hvc: fix return value of __setup handler
     - serial: 8250: fix XOFF/XON sending when DMA is used
     - driver core: dd: fix return value of __setup handler
     - jfs: fix divide error in dbNextAG
     - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
     - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
     - kdb: Fix the putarea helper function
     - clk: Initialize orphan req_rate
     - [amd64] xen: fix is_xen_pmu()
     - [arm64] net: enetc: report software timestamping via SO_TIMESTAMPING
     - [arm64] net: hns3: fix bug when PF set the duplicate MAC address for VFs
     - net: phy: broadcom: Fix brcm_fet_config_init()
     - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
     - [armhf] net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list
       iterator
     - fs: fd tables have to be multiples of BITS_PER_LONG
     - fs: fix fd table size alignment properly
     - LSM: general protection fault in legacy_parse_param
     - block, bfq: don't move oom_bfqq
     - selinux: use correct type for context length
     - selinux: allow FIOCLEX and FIONCLEX with policy capability
     - loop: use sysfs_emit() in the sysfs xxx show()
     - Fix incorrect type in assignment of ipv6 port for audit
     - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
     - bfq: fix use-after-free in bfq_dispatch_request
     - ACPICA: Avoid walking the ACPI Namespace if it is not there
     - Revert "Revert "block, bfq: honor already-setup queue merges""
     - ACPI/APEI: Limit printable size of BERT table data
     - PM: core: keep irq flags in device_pm_check_callbacks()
     - nvme-tcp: lockdep: annotate in-kernel sockets
     - [arm64] spi: tegra20: Use of_device_get_match_data()
     - ext4: correct cluster len and clusters changed accounting in
       ext4_mb_mark_bb
     - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
     - ext4: don't BUG if someone dirty pages without asking ext4 first
     - f2fs: fix to do sanity check on curseg->alloc_type
     - NFSD: Fix nfsd_breaker_owns_lease() return values
     - f2fs: compress: fix to print raw data size in error path of lz4
       decompression
     - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
     - [armel,armhf] ftrace: avoid redundant loads or clobbering IP
     - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
     - ASoC: soc-core: skip zero num_dai component in searching dai name
     - media: cx88-mpeg: clear interrupt status register before streaming video
     - uaccess: fix type mismatch warnings from access_ok()
     - media: Revert "media: em28xx: add missing em28xx_close_extension"
     - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
     - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
     - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
     - [x86] KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP
       MMU
     - [powerpc*] lib/sstep: Fix 'sthcx' instruction
     - [powerpc*] lib/sstep: Fix build errors with newer binutils
     - scsi: qla2xxx: Fix stuck session in gpdb
     - scsi: qla2xxx: Fix scheduling while atomic
     - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
     - scsi: qla2xxx: Fix warning for missing error code
     - scsi: qla2xxx: Fix device reconnect in loop topology
     - scsi: qla2xxx: Add devids and conditionals for 28xx
     - scsi: qla2xxx: Check for firmware dump already collected
     - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
     - scsi: qla2xxx: Fix disk failure to rediscover
     - scsi: qla2xxx: Fix incorrect reporting of task management failure
     - scsi: qla2xxx: Fix hang due to session stuck
     - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
     - scsi: qla2xxx: Fix N2N inconsistent PLOGI
     - scsi: qla2xxx: Reduce false trigger to login
     - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
     - [arm64] platform: chrome: Split trace include file
     - [x86] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't
       activated
     - KVM: Prevent module exit until all VMs are freed
     - [x86] KVM: x86: fix sending PV IPI
     - [x86] KVM: SVM: fix panic on out-of-bounds guest IRQ
     - [x86] ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
     - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
     - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
     - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
     - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
     - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
     - ubifs: Fix to add refcount once page is set private
     - ubifs: rename_whiteout: correct old_dir size computing
     - wireguard: queueing: use CFI-safe ptr_ring cleanup function
     - wireguard: socket: free skb in send6 when ipv6 is disabled
     - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
     - XArray: Fix xas_create_range() when multi-order entry present
     - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error
       path (CVE-2022-28389)
     - can: mcba_usb: properly check endpoint type
     - XArray: Update the LRU list in xas_split()
     - rtc: check if __rtc_read_time was successful
     - gfs2: Make sure FITRIM minlen is rounded up to fs block size
     - [arm64] net: hns3: fix software vlan talbe of vlan 0 inconsistent with
       hardware
     - rxrpc: Fix call timer start racing with call destruction
     - [arm64] mailbox: imx: fix wakeup failure from freeze mode
     - watch_queue: Free the page array when watch_queue is dismantled
     - pinctrl: pinconf-generic: Print arguments for bias-pull-*
     - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
     - [arm*] iop32x: offset IRQ numbers by 1
     - io_uring: fix memory leak of uid in files registration
     - [amd64,arm64] ACPI: CPPC: Avoid out of bounds access when parsing _CPC
       data
     - [arm64] platform/chrome: cros_ec_typec: Check for EC device
     - can: isotp: restore accidentally removed MSG_PEEK feature
     - proc: bootconfig: Add null pointer check
     - [x86] ASoC: soc-compress: Change the check for codec_dai
     - batman-adv: Check ptr for NULL before reducing its refcnt
     - mm/mmap: return 1 from stack_guard_gap __setup() handler
     - mm/memcontrol: return 1 from cgroup.memory __setup() handler
     - mm/usercopy: return 1 from hardened_usercopy __setup() handler
     - bpf: Adjust BPF stack helper functions to accommodate skip > 0
     - bpf: Fix comment for helper bpf_current_task_under_cgroup()
     - dt-bindings: mtd: nand-controller: Fix the reg property description
     - dt-bindings: mtd: nand-controller: Fix a comment in the examples
     - dt-bindings: spi: mxic: The interrupt property is not mandatory
     - [x86] ASoC: topology: Allow TLV control to be either read or write
     - docs: sysctl/kernel: add missing bit to panic_print
     - openvswitch: Fixed nd target mask field in the flow dump.
     - [x86] KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
       (CVE-2022-1158)
     - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28388)
     - coredump: Snapshot the vmas in do_coredump
     - coredump: Remove the WARN_ON in dump_vma_snapshot
     - coredump/elf: Pass coredump_params into fill_note_info
     - coredump: Use the vma snapshot in fill_files_note
     - [arm64] Do not defer reserve_crashkernel() for platforms with no DMA
       memory zones
     - [arm64] PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.111
     - ubifs: Rectify space amount budget for mkdir/tmpfile operations
     - gfs2: Check for active reservation in gfs2_release
     - gfs2: Fix gfs2_release for non-writers regression
     - gfs2: gfs2_setattr_size error path fix
     - [x86] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
     - [x86] KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
     - drm: Add orientation quirk for GPD Win Max
     - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
     - drm/amd/display: Add signal type check when verify stream backends same
     - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
     - ptp: replace snprintf with sysfs_emit
     - [armhf] ath11k: fix kernel panic during unload/load ath11k modules
     - ath11k: mhi: use mhi_sync_power_up()
     - bpf: Make dst_port field in struct bpf_sock 16-bit wide
     - scsi: mvsas: Replace snprintf() with sysfs_emit()
     - scsi: bfa: Replace snprintf() with sysfs_emit()
     - [arm64,armhf] power: supply: axp20x_battery: properly report current when
       discharging
     - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
     - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
     - ipv6: make mc_forwarding atomic
     - [powerpc*] Set crashkernel offset to mid of RMA region
     - drm/amdgpu: Fix recursive locking warning
     - [arm64] PCI: aardvark: Fix support for MSI interrupts
     - [arm64] iommu/arm-smmu-v3: fix event handling soft lockup
     - usb: ehci: add pci device support for Aspeed platforms
     - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
     - iwlwifi: mvm: Correctly set fragmented EBS
     - ipv4: Invalidate neighbour for broadcast address upon address addition
     - dm ioctl: prevent potential spectre v1 gadget
     - dm: requeue IO if mapping table not yet available
     - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
     - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
     - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
     - scsi: pm8001: Fix tag leaks on error
     - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
     - scsi: aha152x: Fix aha152x_setup() __setup handler return value
     - [arm64] scsi: hisi_sas: Free irq vectors in order for v3 HW
     - net/smc: correct settings of RMB window update limit
     - macvtap: advertise link netns via netlink
     - tuntap: add sanity checks about msg_controllen in sendmsg
     - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
     - Bluetooth: use memset avoid memory leaks
     - bnxt_en: Eliminate unintended link toggle during FW reset
     - [mps64el,mipsel] fix fortify panic when copying asm exception handlers
     - scsi: libfc: Fix use after free in fc_exch_abts_resp()
     - can: isotp: set default value for N_As to 50 micro seconds
     - net: account alternate interface name memory
     - net: limit altnames to 64k total
     - net: sfp: add 2500base-X quirk for Lantech SFP module
     - [armhf] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on
       omap5evm
     - Bluetooth: Fix use after free in hci_send_acl
     - netlabel: fix out-of-bounds memory accesses
     - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
     - init/main.c: return 1 from handled __setup() functions
     - minix: fix bug when opening a file with O_DIRECT
     - [arm*] staging: vchiq_core: handle NULL result of find_service_by_handle
     - [arm64,armhf] phy: amlogic: meson8b-usb2: Use dev_err_probe()
     - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
     - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
     - NFSv4: Protect the state recovery thread against direct reclaim
     - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
     - [armhf] clk: ti: Preserve node in ti_dt_clocks_register()
     - clk: Enforce that disjoints limits are invalid
     - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
     - SUNRPC/xprt: async tasks mustn't block waiting for memory
     - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
     - NFS: swap IO handling is slightly different for O_DIRECT IO
     - NFS: swap-out must always use STABLE writes.
     - [armhf] serial: samsung_tty: do not unlock port->lock for
       uart_write_wakeup()
     - virtio_console: eliminate anonymous module_init & module_exit
     - jfs: prevent NULL deref in diFree
     - SUNRPC: Fix socket waits for write buffer space
     - NFS: nfsiod should not block forever in mempool_alloc()
     - NFS: Avoid writeback threads getting stuck in mempool_alloc()
     - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
     - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
     - [x86] Drivers: hv: vmbus: Fix potential crash on module unload
     - Revert "NFSv4: Handle the special Linux file open access mode"
     - NFSv4: fix open failure with O_ACCMODE flag
     - ice: Clear default forwarding VSI during VSI release
     - net: ipv4: fix route with nexthop object delete warning
     - net: stmmac: Fix unset max_speed difference between DT and non-DT
       platforms
     - [armhf] drm/imx: imx-ldb: Check for null pointer after calling kmemdup
     - [armhf] drm/imx: Fix memory leak in imx_pd_connector_get_modes
     - sfc: Do not free an empty page_ring
     - RDMA/mlx5: Don't remove cache MRs when a delay is needed
     - [amd64] IB/rdmavt: add lock to call to rvt_error_qp to prevent a race
       condition
     - [arm64] dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
     - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
     - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
     - ipv6: Fix stats accounting in ip6_pkt_drop
     - ice: synchronize_rcu() when terminating rings
     - net: openvswitch: don't send internal clone attribute to the userspace.
     - net: openvswitch: fix leak of nested actions
     - rxrpc: fix a race in rxrpc_exit_net()
     - qede: confirm skb is allocated before using
     - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
     - drbd: Fix five use after free bugs in get_initial_state
     - io_uring: don't touch scm_fp_list after queueing skb
     - SUNRPC: Handle ENOMEM in call_transmit_status()
     - SUNRPC: Handle low memory situations in call_status()
     - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
     - [armhf] iommu/omap: Fix regression in probe for NULL pointer dereference
     - [arm64] Add part number for Arm Cortex-A78AE
     - [arm64] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
     - [arm64,armhf] mmc: mmci: stm32: correctly check all elements of sg list
     - lz4: fix LZ4_decompress_safe_partial read out of bound
     - mmmremap.c: avoid pointless invalidate_range_start/end on
       mremap(old_size=0)
     - mm/mempolicy: fix mpol_new leak in shared_policy_replace
     - io_uring: fix race between timeout flush and removal (CVE-2022-29582)
     - [x86] pm: Save the MSR validity status at context setup
     - [x86] speculation: Restore speculation related MSRs during S3 resume
     - btrfs: fix qgroup reserve overflow the qgroup limit
     - btrfs: prevent subvol with swapfile from being deleted
     - [arm64] patch_text: Fixup last cpu should be master
     - [amd64] RDMA/hfi1: Fix use-after-free bug for mm struct
     - gpio: Restrict usage of GPIO chip irq members before initialization
     - [arm64] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
     - [arm64,armhf] irqchip/gic-v3: Fix GICR_CTLR.RWP polling
     - drm/nouveau/pmu: Add missing callbacks for Tegra devices
     - mm: don't skip swap entry even if zap_details specified
     - cgroup: Use open-time credentials for process migraton perm checks
       (CVE-2021-4197)
     - [x86] Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
     - [arm64,armhf] irqchip/gic, gic-v3: Prevent GSI to SGI translations
     - [powerpc*] Fix virt_addr_valid() for 64-bit Book3E & 32-bit
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.112
     - [amd64] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
     - hamradio: defer 6pack kfree after unregister_netdev (CVE-2022-1195)
     - hamradio: remove needs_free_netdev to avoid UAF (CVE-2022-1195)
     - [arm64] cpuidle: PSCI: Move the `has_lpi` check to the beginning of the
       function
     - ACPI: processor idle: Check for architectural support for LPI
     - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
     - [arm64] drm/msm: Add missing put_task_struct() in debugfs path
     - SUNRPC: Fix the svc_deferred_event trace class
     - net/sched: flower: fix parsing of ethertype following VLAN header
     - veth: Ensure eth header is in skb's linear part
     - gpiolib: acpi: use correct format characters
     - net: mdio: Alphabetically sort header inclusion
     - net/sched: fix initialization order when updating chain 0 head
     - [arm64] net: dsa: felix: suppress -EPROBE_DEFER errors
     - [armhf] net: ethernet: stmmac: fix altr_tse_pcs function when using a
       fixed-link
     - net/sched: taprio: Check if socket flags are valid
     - cfg80211: hold bss_lock while updating nontrans_list
     - [arm64] drm/msm: Fix range size vs end confusion
     - [arm64] drm/msm/dsi: Use connector directly in
       msm_dsi_manager_connector_init()
     - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
     - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
     - scsi: pm80xx: Enable upper inbound, outbound queues
     - scsi: iscsi: Stop queueing during ep_disconnect
     - scsi: iscsi: Force immediate failure during shutdown
     - scsi: iscsi: Use system_unbound_wq for destroy_work
     - scsi: iscsi: Rel ref after iscsi_lookup_endpoint()
     - scsi: iscsi: Fix in-kernel conn failure handling
     - scsi: iscsi: Move iscsi_ep_disconnect()
     - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
     - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
     - sctp: Initialize daddr on peeled off socket
     - cifs: potential buffer overflow in handling symlinks
     - [arm64] net: bcmgenet: Revert "Use stronger register read/writes to assure
       ordering"
     - drm/amd: Add USBC connector ID
     - btrfs: fix fallocate to use file_modified to update permissions
       consistently
     - btrfs: do not warn for free space inode in cow_file_range
     - drm/amd/display: fix audio format not updated after edid updated
     - drm/amd/display: FEC check in timing validation
     - drm/amd/display: Update VTEM Infopacket definition
     - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
     - drm/amdgpu/vcn: improve vcn dpg stop procedure
     - [x86] Drivers: hv: vmbus: Prevent load re-ordering when reading ring
       buffer
     - scsi: target: tcmu: Fix possible page UAF
     - scsi: lpfc: Fix queue failures when recovering from PCI parity error
     - [powerpc*] scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
     - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
     - [armhf] gpu: ipu-v3: Fix dev_dbg frequency output
     - [arm64] alternatives: mark patch_alternative() as `noinstr`
     - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
     - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
     - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
     - drm/amd/display: Revert FEC check in validation
     - drm/amd/display: Fix allocate_mst_payload assert on resume
     - scsi: mvsas: Add PCI ID of RocketRaid 2640
     - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
     - drivers: net: slip: fix NPD bug in sl_tx_timeout()
     - mm, page_alloc: fix build_zonerefs_node()
     - mm: fix unexpected zeroed page mapping with zram swap
     - [x86] KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
     - ath9k: Properly clear TX status area before reporting to mac80211
     - ath9k: Fix usage of driver-private space in tx_info
     - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
     - btrfs: mark resumed async balance as writing
     - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
     - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
     - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
     - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
     - ipv6: fix panic when forwarding a pkt with no in6 dev
     - drm/amd/display: don't ignore alpha property on pre-multiplied mode
     - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
     - genirq/affinity: Consider that CPUs on nodes can be unbalanced
     - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
     - dm integrity: fix memory corruption when tag_size is less than digest size
     - smp: Fix offline cpu check in flush_smp_call_function_queue()
     - timers: Fix warning condition in __run_timers()
     - dma-direct: avoid redundant memory sync for swiotlb
     - scsi: iscsi: Fix endpoint reuse regression
     - scsi: iscsi: Fix unbound endpoint error handling
     - ax25: add refcount in ax25_dev to avoid UAF bugs (CVE-2022-1204)
     - ax25: fix reference count leaks of ax25_dev (CVE-2022-1204)
     - ax25: fix UAF bugs of net_device caused by rebinding operation
       (CVE-2022-1204)
     - ax25: Fix refcount leaks caused by ax25_cb_del() (CVE-2022-1204)
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect (CVE-2022-1199)
     - ax25: Fix NULL pointer dereferences in ax25 timers (CVE-2022-1205)
     - ax25: Fix UAF bugs in ax25 timers (CVE-2022-1205)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.113
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNP
     - dm: fix mempool NULL pointer race when completing IO
     - [armhf] dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - esp: limit skb_page_frag_refill use to a single page
     - igc: Fix infinite loop in release_swfw_sync
     - igc: Fix BUG: scheduling while atomic
     - rxrpc: Restore removed timer deletion
     - net/smc: Fix sock leak when release after smc_shutdown()
     - net/packet: fix packet_sock xmit return value checking
     - ip6_gre: Avoid updating tunnel->tun_hlen in __gre6_xmit()
     - ip6_gre: Fix skb_under_panic in __gre6_xmit()
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using
       netdev_master_upper_dev_get_rcu
     - ipv6: make ip6_rt_gc_expire an atomic_t
     - netlink: reset network and mac headers in netlink_dump()
     - net: stmmac: Use readl_poll_timeout_atomic() in atomic state
     - [arm64] mm: Remove [PUD|PMD]_TABLE_BIT from [pud|pmd]_bad()
     - [arm64] mm: fix p?d_leaf()
     - [x86] platform/x86: samsung-laptop: Fix an unsigned comparison which can
       never be negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - [amd64,arm64] net: atlantic: Avoid out-of-bounds indexing
     - mt76: Fix undefined behavior due to shift overflowing the constant
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
       constant
     - [arm64] drm/msm/mdp5: check the return of kzalloc()
     - [arm64] net: macb: Restart tx only if queue pointer is lagging
     - scsi: qedi: Fix failed disconnect handling
     - stat: fix inconsistency between struct stat and struct compat_stat
     - nvme: add a quirk to disable namespace identifiers
     - nvme-pci: disable namespace identifiers for Qemu controllers
     - mm, hugetlb: allow for "high" userspace addresses
     - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex
       cleanup
     - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - [amd64,arm64] net: atlantic: invert deep par in pm functions, preventing
       null derefs
     - openvswitch: fix OOB access in reserve_sfa_size()
     - gpio: Request interrupts after IRQ is initialized
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - [arm*] arm_pmu: Validate single/group leader events
     - sched/pelt: Fix attach_entity_load_avg() corner case
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not
       initialised
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Initialise the bridge in
       prepare
     - [powerpc*] KVM: PPC: Fix TCE handling for VFIO
     - [arm*] drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync()
       usage
     - [powerpc*] perf: Fix power9 event alternatives
     - ext4: fix fallocate to use file_modified to update permissions
       consistently
     - ext4: fix symlink file size not match to file content
     - ext4: fix use-after-free in ext4_search_dir
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
     - ext4, doc: fix incorrect h_reserved size
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - can: isotp: stop timeout monitoring when no first frame was sent
     - jbd2: fix a potential race while discarding reserved buffers after an
       abort
     - block/compat_ioctl: fix range check in BLKGETSIZE
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 14
   * [rt] Drop "tcp: Remove superfluous BH-disable around"
   * [rt] Update "tracing: Merge irqflags + preempt counter." for upstream
     changes in 5.10.113
   * [x86] pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
     (Closes: #1006346)
   * floppy: disable FDRAWCMD by default
 .
 linux (5.10.106-1) bullseye; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.104
     - mac80211_hwsim: report NOACK frames in tx_status
     - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work
     - [arm*] i2c: bcm2835: Avoid clock stretching timeouts
     - ASoC: rt5682: do not block workqueue if card is unbound
     - regulator: core: fix false positive in regulator_late_cleanup()
     - Input: clear BTN_RIGHT/MIDDLE on buttonpads
     - [arm64] KVM: arm64: vgic: Read HW interrupt pending state from the HW
     - tipc: fix a bit overflow in tipc_crypto_key_rcv()
     - cifs: fix double free race when mount fails in cifs_get_root()
     - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990
     - usb: gadget: don't release an existing dev->buf (CVE-2022-24958)
     - usb: gadget: clear related members when goto fail (CVE-2022-24958)
     - exfat: reuse exfat_inode_info variable instead of calling EXFAT_I()
     - exfat: fix i_blocks for files truncated over 4 GiB
     - tracing: Add test for user space strings when filtering on string pointers
     - [armhf] serial: stm32: prevent TDR register overwrite when sending x_char
     - ata: pata_hpt37x: fix PCI clock detection
     - drm/amdgpu: check vm ready by amdgpu_vm->evicting flag
     - tracing: Add ustring operation to filtering string pointers
     - [x86] ALSA: intel_hdmi: Fix reference to PCM buffer address
     - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
     - [amd64] iommu/amd: Recover from event log overflow
     - [x86] drm/i915: s/JSP2/ICP2/ PCH
     - xen/netfront: destroy queues before real_num_tx_queues is zeroed
     - mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
     - xfrm: fix MTU regression
     - netfilter: fix use-after-free in __nf_register_net_hook()
     - bpf, sockmap: Do not ignore orig_len parameter
     - xfrm: fix the if_id check in changelink
     - xfrm: enforce validity of offload input flags
     - e1000e: Correct NVM checksum verification flow
     - net: fix up skbs delta_truesize in UDP GRO frag_list
     - netfilter: nf_queue: don't assume sk is full socket
     - netfilter: nf_queue: fix possible use-after-free
     - netfilter: nf_queue: handle socket prefetch
     - batman-adv: Request iflink once in batadv-on-batadv check
     - batman-adv: Request iflink once in batadv_get_real_netdevice
     - batman-adv: Don't expect inter-netns unique iflink indices
     - net: ipv6: ensure we call ipv6_mc_down() at most once
     - net: dcb: flush lingering app table entries for unregistered devices
     - net/smc: fix connection leak
     - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client
     - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server
     - rcu/nocb: Fix missed nocb_timer requeue
     - ice: Fix race conditions between virtchnl handling and VF ndo ops
     - ice: fix concurrent reset and removal of VFs
     - sched/topology: Make sched_init_numa() use a set for the deduplicating
       sort
     - sched/topology: Fix sched_domain_topology_level alloc in sched_init_numa()
     - mac80211: fix forwarded mesh frames AC & queue selection
     - net: stmmac: fix return value of __setup handler
     - mac80211: treat some SAE auth steps as final
     - iavf: Fix missing check for running netdev
     - net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
     - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc()
     - efivars: Respect "block" flag in efivar_entry_set_safe()
     - can: gs_usb: change active_channels's type from atomic_t to u8
     - igc: igc_read_phy_reg_gpy: drop premature return
     - [armel,armhf] 9182/1: mmu: fix returns from early_param() and __setup()
       functions
     - [arm64,armhf] pinctrl: sunxi: Use unique lockdep classes for IRQs
     - igc: igc_write_phy_reg_gpy: drop premature return
     - memfd: fix F_SEAL_WRITE after shmem huge page allocated
     - [armhf] dts: switch timer config to common devkit8000 devicetree
     - [armhf] dts: Use 32KiHz oscillator on devkit8000
     - [arm64] soc: fsl: guts: Revert commit 3c0d64e867ed
     - [arm64] soc: fsl: guts: Add a missing memory allocation failure check
     - [armhf] tegra: Move panels to AUX bus
     - net: chelsio: cxgb3: check the return value of pci_find_capability()
     - iavf: Refactor iavf state machine tracking
     - nl80211: Handle nla_memdup failures in handle_nan_filter
     - drm/amdgpu: fix suspend/resume hang regression
     - net: dcb: disable softirqs in dcbnl_flush_dev()
     - Input: elan_i2c - move regulator_[en|dis]able() out of
       elan_[en|dis]able_power()
     - Input: elan_i2c - fix regulator enable count imbalance after
       suspend/resume
     - HID: add mapping for KEY_DICTATE
     - HID: add mapping for KEY_ALL_APPLICATIONS
     - tracing/histogram: Fix sorting on old "cpu" value
     - tracing: Fix return value of __setup handlers
     - btrfs: fix lost prealloc extents beyond eof after full fsync
     - btrfs: qgroup: fix deadlock between rescan worker and remove qgroup
     - btrfs: add missing run of delayed items after unlink during log replay
     - Revert "xfrm: xfrm_state_mtu should return at least 1280 for ipv6"
     - hamradio: fix macro redefine warning
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.105
     - [x86] bugs: Unconditionally allow spectre_v2=retpoline,amd
     - [armhf] report Spectre v2 status through sysfs
     - [armel,armhf] early traps initialisation
     - [armel,armhf] use LOADADDR() to get load address of sections
     - [armel,armhf] Spectre-BHB workaround
     - [armel,armhf] include unprivileged BPF status in Spectre V2 reporting
     - [arm64] cputype: Add CPU implementor & types for the Apple M1 cores
     - [arm64] Add Neoverse-N2, Cortex-A710 CPU part definition
     - [arm64] Add Cortex-X2 CPU part definition
     - [arm64] Add Cortex-A510 CPU part definition
     - [arm64] Add HWCAP for self-synchronising virtual counter
     - [arm64] add ID_AA64ISAR2_EL1 sys register
     - [arm64] cpufeature: add HWCAP for FEAT_AFP
     - [arm64] cpufeature: add HWCAP for FEAT_RPRES
     - [arm64] entry.S: Add ventry overflow sanity checks
     - [arm64] spectre: Rename spectre_v4_patch_fw_mitigation_conduit
     - [arm64] entry: Make the trampoline cleanup optional
     - [arm64] entry: Free up another register on kpti's tramp_exit path
     - [arm64] entry: Move the trampoline data page before the text page
     - [arm64] entry: Allow tramp_alias to access symbols after the 4K boundary
     - [arm64] entry: Don't assume tramp_vectors is the start of the vectors
     - [arm64] entry: Move trampoline macros out of ifdef'd section
     - [arm64] entry: Make the kpti trampoline's kpti sequence optional
     - [arm64] entry: Allow the trampoline text to occupy multiple pages
     - [arm64] entry: Add non-kpti __bp_harden_el1_vectors for mitigations
     - [arm64] entry: Add vectors that have the bhb mitigation sequences
     - [arm64] entry: Add macro for reading symbol addresses from the trampoline
     - [arm64] Add percpu vectors for EL1
     - [arm64] proton-pack: Report Spectre-BHB vulnerabilities as part of
       Spectre-v2
     - [arm64] KVM: arm64: Allow indirect vectors to be used without SPECTRE_V3A
     - [arm64] Mitigate spectre style branch history side channels
     - [arm64] KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and
       migrated
     - [arm64] Use the clearbhb instruction in mitigations
     - [arm64] proton-pack: Include unprivileged eBPF status in Spectre v2
       mitigation reporting
     - [armel,armhf] fix co-processor register typo
     - [armel,armhf] Do not use NOCROSSREFS directive with ld.lld
     - [armhf] fix build warning in proc-v7-bugs.c
     - xen/xenbus: don't let xenbus_grant_ring() remove grants in error case
       (CVE-2022-23040, XSA-396)
     - xen/grant-table: add gnttab_try_end_foreign_access() (CVE-2022-23036,
       CVE-2022-23038, XSA-396)
     - xen/blkfront: don't use gnttab_query_foreign_access() for mapped status
       (CVE-2022-23036, XSA-396)
     - xen/netfront: don't use gnttab_query_foreign_access() for mapped status
       (CVE-2022-23037, XSA-396)
     - xen/scsifront: don't use gnttab_query_foreign_access() for mapped status
       (CVE-2022-23038, XSA-396)
     - xen/gntalloc: don't use gnttab_query_foreign_access() (CVE-2022-23039,
       XSA-396)
     - xen: remove gnttab_query_foreign_access()
     - xen/9p: use alloc/free_pages_exact() (CVE-2022-23041, XSA-396)
     - xen/pvcalls: use alloc/free_pages_exact() (CVE-2022-23041, XSA-396)
     - xen/gnttab: fix gnttab_end_foreign_access() without page specified
       (CVE-2022-23041, XSA-396)
     - xen/netfront: react properly to failing gnttab_end_foreign_access_ref()
       (CVE-2022-23042, XSA-396)
     - Revert "ACPI: PM: s2idle: Cancel wakeup before dispatching EC GPE"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.106
     - [arm64] clk: qcom: gdsc: Add support to update GDSC transition delay
     - [arm64] dts: armada-3720-turris-mox: Add missing ethernet0 alias
     - tipc: fix kernel panic when enabling bearer
     - mISDN: Remove obsolete PIPELINE_DEBUG debugging information
     - mISDN: Fix memory leak in dsp_pipeline_build()
     - virtio-blk: Don't use MAX_DISCARD_SEGMENTS if max_discard_seg is zero
     - isdn: hfcpci: check the return value of dma_set_mask() in setup_hw()
     - net: qlogic: check the return value of dma_alloc_coherent() in
       qed_vf_hw_prepare()
     - esp: Fix BEET mode inter address family tunneling on GSO
     - qed: return status of qed_iov_get_link
     - i40e: stop disabling VFs due to PF error responses
     - ice: stop disabling VFs due to PF error responses
     - ice: Align macro names to the specification
     - ice: Remove unnecessary checker loop
     - ice: Rename a couple of variables
     - ice: Fix curr_link_speed advertised speed
     - tipc: fix incorrect order of state message data sanity check
     - [armhf] net: ethernet: ti: cpts: Handle error for clk_enable
     - ax25: Fix NULL pointer dereference in ax25_kill_by_device
     - net/mlx5: Fix size field in bufferx_reg struct
     - net/mlx5: Fix a race on command flush flow
     - net/mlx5e: Lag, Only handle events from highest priority multipath entry
     - NFC: port100: fix use-after-free in port100_send_complete
     - net: phy: DP83822: clear MISR2 register to disable interrupts
     - sctp: fix kernel-infoleak for SCTP sockets
     - [arm64] net: bcmgenet: Don't claim WOL when its not available
     - [arm64,armhf] spi: rockchip: Fix error in getting num-cs property
     - [arm64,armhf] spi: rockchip: terminate dma transmission when slave abort
     - net-sysfs: add check for netdevice being present to speed_show
     - [armhf] hwmon: (pmbus) Clear pmbus fault/warning bits after read
     - gpio: Return EPROBE_DEFER if gc->to_irq is NULL
     - Revert "xen-netback: remove 'hotplug-status' once it has served its
       purpose"
     - Revert "xen-netback: Check for hotplug-status existence before watching"
     - ipv6: prevent a possible race condition with lifetimes
     - tracing: Ensure trace buffer is at least 4096 bytes large
     - fuse: fix pipe buffer lifetime for direct_io
     - staging: rtl8723bs: Fix access-point mode deadlock
     - [arm64] net: macb: Fix lost RX packet wakeup race in NAPI receive
     - [arm64] mmc: meson: Fix usage of meson_mmc_post_req()
     - [arm64] dts: marvell: armada-37xx: Remap IO space to bus address 0x0
     - virtio: unexport virtio_finalize_features
     - virtio: acknowledge all features before access
     - watch_queue, pipe: Free watchqueue state after clearing pipe ring
       (CVE-2022-0995)
     - watch_queue: Fix to release page in ->release() (CVE-2022-0995)
     - watch_queue: Fix to always request a pow-of-2 pipe ring size
       (CVE-2022-0995)
     - watch_queue: Fix the alloc bitmap size to reflect notes allocated
       (CVE-2022-0995)
     - watch_queue: Free the alloc bitmap when the watch_queue is torn down
       (CVE-2022-0995)
     - watch_queue: Fix lack of barrier/sync/lock between post and read
       (CVE-2022-0995)
     - watch_queue: Make comment about setting ->defunct more accurate
       (CVE-2022-0995)
     - [x86] boot: Fix memremap of setup_indirect structures
     - [x86] boot: Add setup_indirect support in early_memremap_is_setup_data()
     - [x86] traps: Mark do_int3() NOKPROBE_SYMBOL
     - ext4: add check to prevent attempting to resize an fs with sparse_super2
     - [armel,armhf] fix Thumb2 regression with Spectre BHB
     - watch_queue: Fix filter limit check ((CVE-2022-0995)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 13
   * [rt] Update to 5.10.104-rt63
   * [rt] Update to 5.10.106-rt64
   * sctp: fix the processing for INIT chunk (CVE-2021-3772)
   * tcp: make tcp_read_sock() more robust
   * io_uring: return back safer resurrect
   * [arm64] kvm: Fix copy-and-paste error in bhb templates for v5.10 stable
linux (5.10.113-1) bullseye-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.107
     - Revert "xfrm: state and policy should fail if XFRMA_IF_ID 0"
       (Closes: #1008299)
     - xfrm: Check if_id in xfrm_migrate
     - xfrm: Fix xfrm migrate issues when address family changes
     - mac80211: refuse aggregations sessions before authorized
     - [mips64el,mipsel] smp: fill in sibling and core maps earlier
     - [x86] atm: firestream: check the return value of ioremap() in fs_init()
     - iwlwifi: don't advertise TWT support
     - drm/vrr: Set VRR capable prop only if it is attached to connector
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - sfc: extend the locking on mcdi->seqno
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.108
     - [arm64] crypto: qcom-rng - ensure buffer for generate is completely filled
     - ocfs2: fix crash when initialize filecheck kobj fails
     - mm: swap: get rid of livelock in swapin readahead
     - efi: fix return value of __setup handlers
     - vsock: each transport cycles only on its own sockets
     - esp6: fix check on ipv6_skip_exthdr's return value
     - net: phy: marvell: Fix invalid comparison in the resume and suspend
       functions
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - [x86] hv_netvsc: Add check for kvmalloc_array
     - [armhf] drm/imx: parallel-display: Remove bus flags check in
       imx_pd_bridge_atomic_check()
     - [arm64,armhf] drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - [arm64,armhf] net: dsa: Add missing of_node_put() in dsa_port_parse_of
     - net: phy: mscc: Add MODULE_FIRMWARE macros
     - bnx2x: fix built-in kernel driver load failure
     - [arm64] net: bcmgenet: skip invalid partial checksums
     - [arm64] net: mscc: ocelot: fix backwards compatibility with single-chain
       tc-flower offload
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - usb: usbtmc: Fix bug in pipe direction for control transfers
     - scsi: mpt3sas: Page fault in reply q processing
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: usb: Correct PHY handling of smsc95xx
     - net: usb: Correct reset handling of smsc95xx
     - smsc95xx: Ignore -ENODEV errors when device is unplugged
     - esp: Fix possible buffer overflow in ESP transformation (CVE-2022-27666)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.109
     - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
       (CVE-2022-26490)
     - net: ipv6: fix skb_over_panic in __ip6_append_data
     - exfat: avoid incorrectly releasing for root inode
     - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv
       (CVE-2021-4197)
     - cgroup: Use open-time cgroup namespace for process migration perm checks
       (CVE-2021-4197)
     - cgroup-v1: Correct privileges check in release_agent writes
     - tpm: Fix error handling in async work
     - llc: fix netdevice reference leaks in llc_ui_bind() (CVE-2022-28356)
     - ALSA: oss: Fix PCM OSS buffer allocation overflow
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
     - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
     - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
     - ALSA: hda/realtek: Add quirk for ASUS GA402
     - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent read/write and buffer changes
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prealloc proc writes (CVE-2022-1048)
     - ALSA: pcm: Add stream lock during PCM reset ioctl operations
     - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
     - ALSA: cmipci: Restore aux vol on suspend/resume
     - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
     - [arm64] drivers: net: xgene: Fix regression in CRC stripping
     - netfilter: nf_tables: initialize registers in nft_do_chain()
       (CVE-2022-1016)
     - [x86] ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
     - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
     - [x86] ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
     - [x86] crypto: qat - disable registration of algorithms
     - Revert "ath: add support for special 0x0 regulatory domain"
     - rcu: Don't deboost before reporting expedited quiescent state
     - mac80211: fix potential double free on mesh join
     - tpm: use try_get_ops() in tpm-space.c
     - [arm64] wcn36xx: Differentiate wcn3660 from wcn3620
     - llc: only change llc->dev when bind() succeeds
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.110
     - swiotlb: fix info leak with DMA_FROM_DEVICE (CVE-2022-0854)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - HID: logitech-dj: add new lightspeed receiver id
     - xfrm: fix tunnel model fragmentation behavior
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - gpio: Revert regression in sysfs-gpio (gpiolib.c)
     - spi: Fix invalid sgs value
     - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register (CVE-2022-1353)
     - [arm*] iommu/iova: Improve 32-bit free space estimate
     - tpm: fix reference counting for struct tpm_chip
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - xhci: fix garbage USBSTS being logged in some cases
     - xhci: fix runtime PM imbalance in USB2 resume
     - xhci: make xhci_handshake timeout for xhci_reset() adjustable
     - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
     - [x86] mei: me: add Alder Lake N device id.
     - [x86] mei: avoid iterator usage outside of list_for_each_entry
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
     - KEYS: fix length validation in keyctl_pkey_params_get_2()
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - firmware: stratix10-svc: add missing callback parameter on RSU
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - NFSD: prevent integer overflow on 32 bit systems
     - f2fs: fix to unlock page correctly in error path of is_alive()
     - f2fs: quota: fix loop condition at f2fs_quota_sync()
     - f2fs: fix to do sanity check on .cp_pack_total_block_count
     - [armhf] remoteproc: Fix count check in rproc_coredump_write()
     - [armhf] pinctrl: samsung: drop pin banks references on error paths
     - mtd: rawnand: protect access to rawnand devices while in suspend
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28390)
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mm: invalidate hwpoison page cache page in fault path
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - cifs: prevent bad output lengths in smb2_ioctl_query_info()
     - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
       (CVE-2022-0168)
     - [i386] ALSA: cs4236: fix an incorrect NULL check on list iterator
     - ALSA: hda: Avoid unsol event during RPM suspending
     - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
     - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
     - mm: madvise: skip unmapped vma holes passed to process_madvise
     - mm: madvise: return correct bytes advised with process_madvise
     - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
     - mm,hwpoison: unmap poisoned page before invalidation
     - dm integrity: set journal entry unused when shrinking device
     - drbd: fix potential silent data corruption
     - can: isotp: sanitize CAN ID checks in isotp_bind()
     - [powerpc*] kvm: Fix kvm_use_magic_page
     - udp: call udp_encap_enable for v6 sockets when enabling encap
     - [arm64] signal: nofpsimd: Do not allocate fp/simd context when not
       available
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - coredump: Also dump first pages of non-executable ELF libraries
     - ext4: fix ext4_fc_stats trace point
     - ext4: fix fs corruption when tring to remove a non-empty directory with IO
       error
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
       (CVE-2022-1198)
     - block: limit request dispatch loop duration
     - block: don't merge across cgroup boundaries if blkcg is enabled
     - drm/edid: check basic audio support on CEA extension block
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5250
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5420
     - [x86] mgag200 fix memmapsl configuration in GCTL6 register
     - carl9170: fix missing bit-wise or operator for tx_params
     - pstore: Don't use semaphores in always-atomic-context code
     - [x86] thermal: int340x: Increase bitmap size
     - exec: Force single empty string when argv is empty
     - crypto: rsa-pkcs1pad - only allow with rsa
     - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
     - crypto: rsa-pkcs1pad - restore signature length check
     - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
     - bcache: fixup multiple threads crash
     - DEC: Limit PMAX memory probing to R3k systems
     - brcmfmac: firmware: Allocate space for default boardrev in nvram
     - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
     - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
     - brcmfmac: pcie: Fix crashes due to early IRQs
     - [x86] drm/i915/opregion: check port number bounds for SWSCI display power
       state
     - [x86] drm/i915/gem: add missing boundary check in vm_access
     - PCI: pciehp: Clear cmd_busy bit in polling mode
     - [arm64] PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
     - [arm64] regulator: qcom_smd: fix for_each_child.cocci warnings
     - selinux: check return value of sel_make_avc_files
     - [arm64] hwrng: cavium - Check health status while reading random data
     - [arm64] hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
     - crypto: authenc - Fix sleep in atomic context in decrypt_tail
     - [x86] thermal: int340x: Check for NULL after calling kmemdup()
     - [arm64,armhf] spi: tegra114: Add missing IRQ check in tegra_spi_probe
     - [arm64] mm: avoid fixmap race condition when create pud mapping
     - audit: log AUDIT_TIME_* records only from rules
     - spi: pxa2xx-pci: Balance reference count for PCI DMA device
     - [armhf] hwmon: (pmbus) Add mutex to regulator ops
     - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
     - nvme: cleanup __nvme_check_ids
     - block: don't delete queue kobject before its children
     - PM: hibernate: fix __setup handler error handling
     - PM: suspend: fix return value of __setup handler
     - [arm64] crypto: sun8i-ce - call finalize with bh disabled
     - [arm64,armhf] crypto: amlogic - call finalize with bh disabled
     - [armhf] clocksource/drivers/timer-ti-dm: Fix regression from errata i940
       fix
     - [armhf] clocksource/drivers/exynos_mct: Refactor resources allocation
     - [armhf] clocksource/drivers/exynos_mct: Handle DTS with higher number of
       interrupts
     - clocksource/drivers/timer-of: Check return value of of_iomap in
       timer_of_base_init()
     - ACPI: APEI: fix return value of __setup handlers
     - [x86] crypto: ccp - ccp_dmaengine_unregister release dma channels
     - [arm*] amba: Make the remove callback return void
     - [armhf] hwmon: (pmbus) Add Vin unit off handling
     - [x86] clocksource: acpi_pm: fix return value of __setup handler
     - io_uring: terminate manual loop iterator loop correctly for non-vecs
     - watch_queue: Fix NULL dereference in error cleanup
     - watch_queue: Actually free the watch
     - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
     - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
     - sched/core: Export pelt_thermal_tp
     - rseq: Optimise rseq_get_rseq_cs() and clear_rseq_cs()
     - rseq: Remove broken uapi field layout on 32-bit little endian
     - perf/core: Fix address filter parser for multiple filters
     - [x86] perf/x86/intel/pt: Fix address filter config for 32-bit kernel
     - f2fs: fix missing free nid in f2fs_handle_failed_inode
     - nfsd: more robust allocation failure handling in nfsd_file_cache_init
     - f2fs: fix to avoid potential deadlock
     - btrfs: fix unexpected error path when reflinking an inline extent
     - f2fs: compress: remove unneeded read when rewrite whole cluster
     - f2fs: fix compressed file start atomic write may cause data corruption
     - [arm64,armhf] media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP
       buffers across ioctls
     - media: bttv: fix WARNING regression on tunerless devices
     - [arm*] ASoC: generic: simple-card-utils: remove useless assignment
     - [armhf] media: coda: Fix missing put_device() call in coda_get_vdoa_data
     - [armhf] media: aspeed: Correct value for h-total-pixels
     - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
       avoid black screen
     - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
     - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
     - [arm64] firmware: qcom: scm: Remove reassignment to desc following
       initializer
     - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is
       not defined
     - [armhf] dts: imx: Add missing LVDS decoder on M53Menlo
     - media: em28xx: initialize refcount before kref_get
     - media: usb: go7007: s2250-board: fix leak in probe()
     - [arm64,armhf] media: cedrus: H265: Fix neighbour info buffer size
     - [arm64,armhf] media: cedrus: h264: Fix neighbour info buffer size
     - [x86] ASoC: rt5663: check the return value of devm_kzalloc() in
       rt5663_parse_dp()
     - printk: fix return value of printk.devkmsg __setup handler
     - [x86] ASoC: soc-compress: prevent the potentially use of null pointer
     - [armhf] memory: emif: Add check for setup_interrupts
     - [armhf] memory: emif: check the pointer temp in get_device_details()
     - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
     - [arm64] dts: rockchip: Fix SDIO regulator supply properties on
       rk3399-firefly
     - media: stk1160: If start stream fails, return buffers with
       VB2_BUF_STATE_QUEUED
     - media: saa7134: convert list_for_each to entry variant
     - media: saa7134: fix incorrect use to determine if list is empty
     - ivtv: fix incorrect device_caps for ivtvfb
     - [arm64,armhf] ASoC: rockchip: i2s: Use
       devm_platform_get_and_ioremap_resource()
     - [arm64,armhf] ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
       rockchip_i2s_probe
     - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
     - [armhf] ASoC: fsl_spdif: Disable TX clock when stop
     - [armhf] ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
     - [arm64] drm/meson: osd_afbcd: Add an exit callback to struct
       meson_afbcd_ops
     - [arm64,armhf] drm/bridge: Add missing pm_runtime_disable() in
       __dw_mipi_dsi_probe
     - [arm64] drm: bridge: adv7511: Fix ADV7535 HPD enablement
     - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
     - [arm64,armhf] drm/panfrost: Check for error num after setting mask
     - Bluetooth: hci_serdev: call init_rwsem() before p->open()
     - [armhf] mtd: rawnand: gpmi: fix controller timings setting
     - drm/edid: Don't clear formats if using deep color
     - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
     - drm/amd/display: Fix a NULL pointer dereference in
       amdgpu_dm_connector_add_common_modes()
     - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
     - ath9k_htc: fix uninit value bugs
     - RDMA/core: Set MR type in ib_reg_user_mr
     - [powerpc*] KVM: PPC: Fix vmx/vsx mixup in mmio emulation
     - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
     - i40e: respect metadata on XSK Rx to skb
     - [x86] ray_cs: Check ioremap return value
     - [powerpc*] KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
     - [powerpc*] perf: Don't use perf_hw_context for trace IMC PMU
     - [arm64,armhf] net: dsa: mv88e6xxx: Enable port policy support on 6097
     - [arm64] PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated
       bridge
     - [arm64,armhf] drm/bridge: dw-hdmi: use safe format when first in bridge
       chain
     - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
     - drm/amd/pm: enable pm sysfs write for one VF mode
     - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
     - IB/cma: Allow XRC INI QPs to set their local ACK timeout
     - dax: make sure inodes are flushed before destroy cache
     - iwlwifi: Fix -EIO error code that is never returned
     - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
     - [arm64] drm/msm/dp: populate connector of struct dp_panel
     - [arm64] drm/msm/dpu: add DSPP blocks teardown
     - [arm64] drm/msm/dpu: fix dp audio condition
     - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
     - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
     - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
     - scsi: pm8001: Fix le32 values handling in
       pm80xx_set_sas_protocol_timer_config()
     - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
     - scsi: pm8001: Fix NCQ NON DATA command task initialization
     - scsi: pm8001: Fix NCQ NON DATA command completion handling
     - scsi: pm8001: Fix abort all task initialization
     - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
     - drm/amd/display: Remove vupdate_int_entry definition
     - TOMOYO: fix __setup handlers return values
     - [arm64,armhf] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
     - [x86] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong
       false return
     - [arm64] scsi: hisi_sas: Change permission of parameter prot_mask
     - [arm64] bpf, arm64: Call build_prologue() first in first JIT pass
     - [arm64] bpf, arm64: Feed byte-offset into bpf line info
     - [arm64,armhf] gpu: host1x: Fix a memory leak in 'host1x_remove()'
     - [powerpc*] mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
     - [x86] KVM: x86: Fix emulation in writing cr8
     - [x86] KVM: x86/emulator: Defer not-present segment check in
       __load_segment_descriptor()
     - [x86] hv_balloon: rate-limit "Unhandled message" warning
     - [amd64] IB/hfi1: Allow larger MTU without AIP
     - PCI: Reduce warnings on possible RW1C corruption
     - [armhf] mfd: mc13xxx: Add check for mc13xxx_irq_request
     - [x86] platform/x86: huawei-wmi: check the return value of
       device_create_file()
     - vxcan: enable local echo for sent CAN frames
     - ath10k: Fix error handling in ath10k_setup_msa_resources
     - [mips*] pgalloc: fix memory leak caused by pgd_free()
     - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
     - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
     - bpf, sockmap: Fix more uncharged while msg has more_data
     - bpf, sockmap: Fix double uncharge the mem of sk_msg
     - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
     - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
     - can: isotp: support MSG_TRUNC flag when reading from socket
     - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
     - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
     - af_netlink: Fix shift out of bounds in group mask calculation
     - [arm64,armhf] i2c: meson: Fix wrong speed use from probe
     - PCI: Avoid broken MSI on SB600 USB devices
     - [arm64] net: bcmgenet: Use stronger register read/writes to assure
       ordering
     - tcp: ensure PMTU updates are processed during fastopen
     - openvswitch: always update flow key after nat
     - tipc: fix the timer expires after interval 100ms
     - [x86] mxser: fix xmit_buf leak in activate when LSR == 0xff
     - [armhf] fsi: aspeed: convert to devm_platform_ioremap_resource
     - [armhf] fsi: Aspeed: Fix a potential double free
     - soundwire: intel: fix wrong register name in intel_shim_wake
     - iio: mma8452: Fix probe failing when an i2c_device_id is used
     - [arm64,armhf] phy: dphy: Correct lpx parameter and its
       derivatives(ta_{get,go,sure})
     - [x86] serial: 8250_mid: Balance reference count for PCI DMA device
     - [x86] serial: 8250_lpss: Balance reference count for PCI DMA device
     - NFS: Use of mapping_set_error() results in spurious errors
     - serial: 8250: Fix race condition in RTS-after-send handling
     - NFS: Return valid errors from nfs2/3_decode_dirent()
     - [arm64] clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
     - [arm64] clk: qcom: clk-rcg2: Update the frac table for pixel clock
     - nvdimm/region: Fix default alignment for small regions
     - [armhf] clk: tegra: tegra124-emc: Fix missing put_device() call in
       emc_ensure_emc_driver
     - NFS: remove unneeded check in decode_devicenotify_args()
     - [arm64,armhf] pinctrl/rockchip: Add missing of_node_put() in
       rockchip_pinctrl_probe
     - [s390x] tty: hvc: fix return value of __setup handler
     - serial: 8250: fix XOFF/XON sending when DMA is used
     - driver core: dd: fix return value of __setup handler
     - jfs: fix divide error in dbNextAG
     - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
     - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
     - kdb: Fix the putarea helper function
     - clk: Initialize orphan req_rate
     - [amd64] xen: fix is_xen_pmu()
     - [arm64] net: enetc: report software timestamping via SO_TIMESTAMPING
     - [arm64] net: hns3: fix bug when PF set the duplicate MAC address for VFs
     - net: phy: broadcom: Fix brcm_fet_config_init()
     - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
     - [armhf] net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list
       iterator
     - fs: fd tables have to be multiples of BITS_PER_LONG
     - fs: fix fd table size alignment properly
     - LSM: general protection fault in legacy_parse_param
     - block, bfq: don't move oom_bfqq
     - selinux: use correct type for context length
     - selinux: allow FIOCLEX and FIONCLEX with policy capability
     - loop: use sysfs_emit() in the sysfs xxx show()
     - Fix incorrect type in assignment of ipv6 port for audit
     - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
     - bfq: fix use-after-free in bfq_dispatch_request
     - ACPICA: Avoid walking the ACPI Namespace if it is not there
     - Revert "Revert "block, bfq: honor already-setup queue merges""
     - ACPI/APEI: Limit printable size of BERT table data
     - PM: core: keep irq flags in device_pm_check_callbacks()
     - nvme-tcp: lockdep: annotate in-kernel sockets
     - [arm64] spi: tegra20: Use of_device_get_match_data()
     - ext4: correct cluster len and clusters changed accounting in
       ext4_mb_mark_bb
     - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
     - ext4: don't BUG if someone dirty pages without asking ext4 first
     - f2fs: fix to do sanity check on curseg->alloc_type
     - NFSD: Fix nfsd_breaker_owns_lease() return values
     - f2fs: compress: fix to print raw data size in error path of lz4
       decompression
     - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
     - [armel,armhf] ftrace: avoid redundant loads or clobbering IP
     - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
     - ASoC: soc-core: skip zero num_dai component in searching dai name
     - media: cx88-mpeg: clear interrupt status register before streaming video
     - uaccess: fix type mismatch warnings from access_ok()
     - media: Revert "media: em28xx: add missing em28xx_close_extension"
     - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
     - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
     - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
     - [x86] KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP
       MMU
     - [powerpc*] lib/sstep: Fix 'sthcx' instruction
     - [powerpc*] lib/sstep: Fix build errors with newer binutils
     - scsi: qla2xxx: Fix stuck session in gpdb
     - scsi: qla2xxx: Fix scheduling while atomic
     - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
     - scsi: qla2xxx: Fix warning for missing error code
     - scsi: qla2xxx: Fix device reconnect in loop topology
     - scsi: qla2xxx: Add devids and conditionals for 28xx
     - scsi: qla2xxx: Check for firmware dump already collected
     - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
     - scsi: qla2xxx: Fix disk failure to rediscover
     - scsi: qla2xxx: Fix incorrect reporting of task management failure
     - scsi: qla2xxx: Fix hang due to session stuck
     - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
     - scsi: qla2xxx: Fix N2N inconsistent PLOGI
     - scsi: qla2xxx: Reduce false trigger to login
     - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
     - [arm64] platform: chrome: Split trace include file
     - [x86] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't
       activated
     - KVM: Prevent module exit until all VMs are freed
     - [x86] KVM: x86: fix sending PV IPI
     - [x86] KVM: SVM: fix panic on out-of-bounds guest IRQ
     - [x86] ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
     - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
     - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
     - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
     - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
     - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
     - ubifs: Fix to add refcount once page is set private
     - ubifs: rename_whiteout: correct old_dir size computing
     - wireguard: queueing: use CFI-safe ptr_ring cleanup function
     - wireguard: socket: free skb in send6 when ipv6 is disabled
     - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
     - XArray: Fix xas_create_range() when multi-order entry present
     - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error
       path (CVE-2022-28389)
     - can: mcba_usb: properly check endpoint type
     - XArray: Update the LRU list in xas_split()
     - rtc: check if __rtc_read_time was successful
     - gfs2: Make sure FITRIM minlen is rounded up to fs block size
     - [arm64] net: hns3: fix software vlan talbe of vlan 0 inconsistent with
       hardware
     - rxrpc: Fix call timer start racing with call destruction
     - [arm64] mailbox: imx: fix wakeup failure from freeze mode
     - watch_queue: Free the page array when watch_queue is dismantled
     - pinctrl: pinconf-generic: Print arguments for bias-pull-*
     - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
     - [arm*] iop32x: offset IRQ numbers by 1
     - io_uring: fix memory leak of uid in files registration
     - [amd64,arm64] ACPI: CPPC: Avoid out of bounds access when parsing _CPC
       data
     - [arm64] platform/chrome: cros_ec_typec: Check for EC device
     - can: isotp: restore accidentally removed MSG_PEEK feature
     - proc: bootconfig: Add null pointer check
     - [x86] ASoC: soc-compress: Change the check for codec_dai
     - batman-adv: Check ptr for NULL before reducing its refcnt
     - mm/mmap: return 1 from stack_guard_gap __setup() handler
     - mm/memcontrol: return 1 from cgroup.memory __setup() handler
     - mm/usercopy: return 1 from hardened_usercopy __setup() handler
     - bpf: Adjust BPF stack helper functions to accommodate skip > 0
     - bpf: Fix comment for helper bpf_current_task_under_cgroup()
     - dt-bindings: mtd: nand-controller: Fix the reg property description
     - dt-bindings: mtd: nand-controller: Fix a comment in the examples
     - dt-bindings: spi: mxic: The interrupt property is not mandatory
     - [x86] ASoC: topology: Allow TLV control to be either read or write
     - docs: sysctl/kernel: add missing bit to panic_print
     - openvswitch: Fixed nd target mask field in the flow dump.
     - [x86] KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
       (CVE-2022-1158)
     - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28388)
     - coredump: Snapshot the vmas in do_coredump
     - coredump: Remove the WARN_ON in dump_vma_snapshot
     - coredump/elf: Pass coredump_params into fill_note_info
     - coredump: Use the vma snapshot in fill_files_note
     - [arm64] Do not defer reserve_crashkernel() for platforms with no DMA
       memory zones
     - [arm64] PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.111
     - ubifs: Rectify space amount budget for mkdir/tmpfile operations
     - gfs2: Check for active reservation in gfs2_release
     - gfs2: Fix gfs2_release for non-writers regression
     - gfs2: gfs2_setattr_size error path fix
     - [x86] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
     - [x86] KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
     - drm: Add orientation quirk for GPD Win Max
     - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
     - drm/amd/display: Add signal type check when verify stream backends same
     - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
     - ptp: replace snprintf with sysfs_emit
     - [armhf] ath11k: fix kernel panic during unload/load ath11k modules
     - ath11k: mhi: use mhi_sync_power_up()
     - bpf: Make dst_port field in struct bpf_sock 16-bit wide
     - scsi: mvsas: Replace snprintf() with sysfs_emit()
     - scsi: bfa: Replace snprintf() with sysfs_emit()
     - [arm64,armhf] power: supply: axp20x_battery: properly report current when
       discharging
     - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
     - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
     - ipv6: make mc_forwarding atomic
     - [powerpc*] Set crashkernel offset to mid of RMA region
     - drm/amdgpu: Fix recursive locking warning
     - [arm64] PCI: aardvark: Fix support for MSI interrupts
     - [arm64] iommu/arm-smmu-v3: fix event handling soft lockup
     - usb: ehci: add pci device support for Aspeed platforms
     - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
     - iwlwifi: mvm: Correctly set fragmented EBS
     - ipv4: Invalidate neighbour for broadcast address upon address addition
     - dm ioctl: prevent potential spectre v1 gadget
     - dm: requeue IO if mapping table not yet available
     - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
     - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
     - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
     - scsi: pm8001: Fix tag leaks on error
     - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
     - scsi: aha152x: Fix aha152x_setup() __setup handler return value
     - [arm64] scsi: hisi_sas: Free irq vectors in order for v3 HW
     - net/smc: correct settings of RMB window update limit
     - macvtap: advertise link netns via netlink
     - tuntap: add sanity checks about msg_controllen in sendmsg
     - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
     - Bluetooth: use memset avoid memory leaks
     - bnxt_en: Eliminate unintended link toggle during FW reset
     - [mps64el,mipsel] fix fortify panic when copying asm exception handlers
     - scsi: libfc: Fix use after free in fc_exch_abts_resp()
     - can: isotp: set default value for N_As to 50 micro seconds
     - net: account alternate interface name memory
     - net: limit altnames to 64k total
     - net: sfp: add 2500base-X quirk for Lantech SFP module
     - [armhf] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on
       omap5evm
     - Bluetooth: Fix use after free in hci_send_acl
     - netlabel: fix out-of-bounds memory accesses
     - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
     - init/main.c: return 1 from handled __setup() functions
     - minix: fix bug when opening a file with O_DIRECT
     - [arm*] staging: vchiq_core: handle NULL result of find_service_by_handle
     - [arm64,armhf] phy: amlogic: meson8b-usb2: Use dev_err_probe()
     - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
     - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
     - NFSv4: Protect the state recovery thread against direct reclaim
     - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
     - [armhf] clk: ti: Preserve node in ti_dt_clocks_register()
     - clk: Enforce that disjoints limits are invalid
     - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
     - SUNRPC/xprt: async tasks mustn't block waiting for memory
     - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
     - NFS: swap IO handling is slightly different for O_DIRECT IO
     - NFS: swap-out must always use STABLE writes.
     - [armhf] serial: samsung_tty: do not unlock port->lock for
       uart_write_wakeup()
     - virtio_console: eliminate anonymous module_init & module_exit
     - jfs: prevent NULL deref in diFree
     - SUNRPC: Fix socket waits for write buffer space
     - NFS: nfsiod should not block forever in mempool_alloc()
     - NFS: Avoid writeback threads getting stuck in mempool_alloc()
     - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
     - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
     - [x86] Drivers: hv: vmbus: Fix potential crash on module unload
     - Revert "NFSv4: Handle the special Linux file open access mode"
     - NFSv4: fix open failure with O_ACCMODE flag
     - ice: Clear default forwarding VSI during VSI release
     - net: ipv4: fix route with nexthop object delete warning
     - net: stmmac: Fix unset max_speed difference between DT and non-DT
       platforms
     - [armhf] drm/imx: imx-ldb: Check for null pointer after calling kmemdup
     - [armhf] drm/imx: Fix memory leak in imx_pd_connector_get_modes
     - sfc: Do not free an empty page_ring
     - RDMA/mlx5: Don't remove cache MRs when a delay is needed
     - [amd64] IB/rdmavt: add lock to call to rvt_error_qp to prevent a race
       condition
     - [arm64] dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
     - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
     - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
     - ipv6: Fix stats accounting in ip6_pkt_drop
     - ice: synchronize_rcu() when terminating rings
     - net: openvswitch: don't send internal clone attribute to the userspace.
     - net: openvswitch: fix leak of nested actions
     - rxrpc: fix a race in rxrpc_exit_net()
     - qede: confirm skb is allocated before using
     - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
     - drbd: Fix five use after free bugs in get_initial_state
     - io_uring: don't touch scm_fp_list after queueing skb
     - SUNRPC: Handle ENOMEM in call_transmit_status()
     - SUNRPC: Handle low memory situations in call_status()
     - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
     - [armhf] iommu/omap: Fix regression in probe for NULL pointer dereference
     - [arm64] Add part number for Arm Cortex-A78AE
     - [arm64] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
     - [arm64,armhf] mmc: mmci: stm32: correctly check all elements of sg list
     - lz4: fix LZ4_decompress_safe_partial read out of bound
     - mmmremap.c: avoid pointless invalidate_range_start/end on
       mremap(old_size=0)
     - mm/mempolicy: fix mpol_new leak in shared_policy_replace
     - io_uring: fix race between timeout flush and removal (CVE-2022-29582)
     - [x86] pm: Save the MSR validity status at context setup
     - [x86] speculation: Restore speculation related MSRs during S3 resume
     - btrfs: fix qgroup reserve overflow the qgroup limit
     - btrfs: prevent subvol with swapfile from being deleted
     - [arm64] patch_text: Fixup last cpu should be master
     - [amd64] RDMA/hfi1: Fix use-after-free bug for mm struct
     - gpio: Restrict usage of GPIO chip irq members before initialization
     - [arm64] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
     - [arm64,armhf] irqchip/gic-v3: Fix GICR_CTLR.RWP polling
     - drm/nouveau/pmu: Add missing callbacks for Tegra devices
     - mm: don't skip swap entry even if zap_details specified
     - cgroup: Use open-time credentials for process migraton perm checks
       (CVE-2021-4197)
     - [x86] Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
     - [arm64,armhf] irqchip/gic, gic-v3: Prevent GSI to SGI translations
     - [powerpc*] Fix virt_addr_valid() for 64-bit Book3E & 32-bit
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.112
     - [amd64] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
     - hamradio: defer 6pack kfree after unregister_netdev (CVE-2022-1195)
     - hamradio: remove needs_free_netdev to avoid UAF (CVE-2022-1195)
     - [arm64] cpuidle: PSCI: Move the `has_lpi` check to the beginning of the
       function
     - ACPI: processor idle: Check for architectural support for LPI
     - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
     - [arm64] drm/msm: Add missing put_task_struct() in debugfs path
     - SUNRPC: Fix the svc_deferred_event trace class
     - net/sched: flower: fix parsing of ethertype following VLAN header
     - veth: Ensure eth header is in skb's linear part
     - gpiolib: acpi: use correct format characters
     - net: mdio: Alphabetically sort header inclusion
     - net/sched: fix initialization order when updating chain 0 head
     - [arm64] net: dsa: felix: suppress -EPROBE_DEFER errors
     - [armhf] net: ethernet: stmmac: fix altr_tse_pcs function when using a
       fixed-link
     - net/sched: taprio: Check if socket flags are valid
     - cfg80211: hold bss_lock while updating nontrans_list
     - [arm64] drm/msm: Fix range size vs end confusion
     - [arm64] drm/msm/dsi: Use connector directly in
       msm_dsi_manager_connector_init()
     - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
     - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
     - scsi: pm80xx: Enable upper inbound, outbound queues
     - scsi: iscsi: Stop queueing during ep_disconnect
     - scsi: iscsi: Force immediate failure during shutdown
     - scsi: iscsi: Use system_unbound_wq for destroy_work
     - scsi: iscsi: Rel ref after iscsi_lookup_endpoint()
     - scsi: iscsi: Fix in-kernel conn failure handling
     - scsi: iscsi: Move iscsi_ep_disconnect()
     - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
     - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
     - sctp: Initialize daddr on peeled off socket
     - cifs: potential buffer overflow in handling symlinks
     - [arm64] net: bcmgenet: Revert "Use stronger register read/writes to assure
       ordering"
     - drm/amd: Add USBC connector ID
     - btrfs: fix fallocate to use file_modified to update permissions
       consistently
     - btrfs: do not warn for free space inode in cow_file_range
     - drm/amd/display: fix audio format not updated after edid updated
     - drm/amd/display: FEC check in timing validation
     - drm/amd/display: Update VTEM Infopacket definition
     - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
     - drm/amdgpu/vcn: improve vcn dpg stop procedure
     - [x86] Drivers: hv: vmbus: Prevent load re-ordering when reading ring
       buffer
     - scsi: target: tcmu: Fix possible page UAF
     - scsi: lpfc: Fix queue failures when recovering from PCI parity error
     - [powerpc*] scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
     - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
     - [armhf] gpu: ipu-v3: Fix dev_dbg frequency output
     - [arm64] alternatives: mark patch_alternative() as `noinstr`
     - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
     - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
     - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
     - drm/amd/display: Revert FEC check in validation
     - drm/amd/display: Fix allocate_mst_payload assert on resume
     - scsi: mvsas: Add PCI ID of RocketRaid 2640
     - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
     - drivers: net: slip: fix NPD bug in sl_tx_timeout()
     - mm, page_alloc: fix build_zonerefs_node()
     - mm: fix unexpected zeroed page mapping with zram swap
     - [x86] KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
     - ath9k: Properly clear TX status area before reporting to mac80211
     - ath9k: Fix usage of driver-private space in tx_info
     - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
     - btrfs: mark resumed async balance as writing
     - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
     - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
     - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
     - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
     - ipv6: fix panic when forwarding a pkt with no in6 dev
     - drm/amd/display: don't ignore alpha property on pre-multiplied mode
     - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
     - genirq/affinity: Consider that CPUs on nodes can be unbalanced
     - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
     - dm integrity: fix memory corruption when tag_size is less than digest size
     - smp: Fix offline cpu check in flush_smp_call_function_queue()
     - timers: Fix warning condition in __run_timers()
     - dma-direct: avoid redundant memory sync for swiotlb
     - scsi: iscsi: Fix endpoint reuse regression
     - scsi: iscsi: Fix unbound endpoint error handling
     - ax25: add refcount in ax25_dev to avoid UAF bugs (CVE-2022-1204)
     - ax25: fix reference count leaks of ax25_dev (CVE-2022-1204)
     - ax25: fix UAF bugs of net_device caused by rebinding operation
       (CVE-2022-1204)
     - ax25: Fix refcount leaks caused by ax25_cb_del() (CVE-2022-1204)
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect (CVE-2022-1199)
     - ax25: Fix NULL pointer dereferences in ax25 timers (CVE-2022-1205)
     - ax25: Fix UAF bugs in ax25 timers (CVE-2022-1205)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.113
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNP
     - dm: fix mempool NULL pointer race when completing IO
     - [armhf] dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - esp: limit skb_page_frag_refill use to a single page
     - igc: Fix infinite loop in release_swfw_sync
     - igc: Fix BUG: scheduling while atomic
     - rxrpc: Restore removed timer deletion
     - net/smc: Fix sock leak when release after smc_shutdown()
     - net/packet: fix packet_sock xmit return value checking
     - ip6_gre: Avoid updating tunnel->tun_hlen in __gre6_xmit()
     - ip6_gre: Fix skb_under_panic in __gre6_xmit()
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using
       netdev_master_upper_dev_get_rcu
     - ipv6: make ip6_rt_gc_expire an atomic_t
     - netlink: reset network and mac headers in netlink_dump()
     - net: stmmac: Use readl_poll_timeout_atomic() in atomic state
     - [arm64] mm: Remove [PUD|PMD]_TABLE_BIT from [pud|pmd]_bad()
     - [arm64] mm: fix p?d_leaf()
     - [x86] platform/x86: samsung-laptop: Fix an unsigned comparison which can
       never be negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - [amd64,arm64] net: atlantic: Avoid out-of-bounds indexing
     - mt76: Fix undefined behavior due to shift overflowing the constant
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
       constant
     - [arm64] drm/msm/mdp5: check the return of kzalloc()
     - [arm64] net: macb: Restart tx only if queue pointer is lagging
     - scsi: qedi: Fix failed disconnect handling
     - stat: fix inconsistency between struct stat and struct compat_stat
     - nvme: add a quirk to disable namespace identifiers
     - nvme-pci: disable namespace identifiers for Qemu controllers
     - mm, hugetlb: allow for "high" userspace addresses
     - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex
       cleanup
     - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - [amd64,arm64] net: atlantic: invert deep par in pm functions, preventing
       null derefs
     - openvswitch: fix OOB access in reserve_sfa_size()
     - gpio: Request interrupts after IRQ is initialized
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - [arm*] arm_pmu: Validate single/group leader events
     - sched/pelt: Fix attach_entity_load_avg() corner case
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not
       initialised
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Initialise the bridge in
       prepare
     - [powerpc*] KVM: PPC: Fix TCE handling for VFIO
     - [arm*] drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync()
       usage
     - [powerpc*] perf: Fix power9 event alternatives
     - ext4: fix fallocate to use file_modified to update permissions
       consistently
     - ext4: fix symlink file size not match to file content
     - ext4: fix use-after-free in ext4_search_dir
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
     - ext4, doc: fix incorrect h_reserved size
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - can: isotp: stop timeout monitoring when no first frame was sent
     - jbd2: fix a potential race while discarding reserved buffers after an
       abort
     - block/compat_ioctl: fix range check in BLKGETSIZE
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 14
   * [rt] Drop "tcp: Remove superfluous BH-disable around"
   * [rt] Update "tracing: Merge irqflags + preempt counter." for upstream
     changes in 5.10.113
   * [x86] pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
     (Closes: #1006346)
   * floppy: disable FDRAWCMD by default

linux-signed-amd64 (5.10.127+1) bullseye; urgency=medium
 .
   * Sign kernel from linux 5.10.127-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.121
     - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop
     - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
     - ALSA: usb-audio: Cancel pending work at closing a MIDI substream
     - USB: serial: option: add Quectel BG95 modem
     - USB: new quirk for Dell Gen 2 devices
     - usb: dwc3: gadget: Move null pinter check to proper place
     - usb: core: hcd: Add support for deferring roothub registration
     - cifs: when extending a file with falloc we should make files not-sparse
     - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI
     - Fonts: Make font size unsigned in font_desc
     - [x86] MCE/AMD: Fix memory leak when threshold_create_bank() fails
     - [w86] perf/x86/intel: Fix event constraints for ICL
     - ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
     - ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
     - btrfs: add "0x" prefix for unsupported optional features
     - btrfs: repair super block num_devices automatically
     - [amd64] iommu/vt-d: Add RPLS to quirk list to skip TE disabling
     - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
     - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
     - b43legacy: Fix assigning negative value to unsigned variable
     - b43: Fix assigning negative value to unsigned variable
     - ipw2x00: Fix potential NULL dereference in libipw_xmit()
     - ipv6: fix locking issues with loops over idev->addr_list
     - fbcon: Consistently protect deferred_takeover with console_lock()
     - [x86] platform/uv: Update TSC sync state for UV5
     - ACPICA: Avoid cache flush inside virtual machines
     - drm/komeda: return early if drm_universal_plane_init() fails.
     - rcu-tasks: Fix race in schedule and flush work
     - rcu: Make TASKS_RUDE_RCU select IRQ_WORK
     - sfc: ef10: Fix assigning negative value to unsigned variable
     - ALSA: jack: Access input_dev under mutex
     - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA
       direction
     - drm/amd/pm: fix double free in si_parse_power_table()
     - ath9k: fix QCA9561 PA bias level
     - media: venus: hfi: avoid null dereference in deinit
     - media: pci: cx23885: Fix the error handling in cx23885_initdev()
     - media: cx25821: Fix the warning when removing the module
     - md/bitmap: don't set sb values if can't pass sanity check
     - mmc: jz4740: Apply DMA engine limits to maximum segment size
     - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit
     - scsi: megaraid: Fix error check return value of register_chrdev()
     - scsi: ufs: Use pm_runtime_resume_and_get() instead of
       pm_runtime_get_sync()
     - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp()
     - ath11k: disable spectral scan during spectral deinit
     - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408
     - drm/plane: Move range check for format_count earlier
     - drm/amd/pm: fix the compile warning
     - ath10k: skip ath10k_halt during suspend for driver state RESTARTING
     - [arm64] compat: Do not treat syscall number as ESR_ELx for a bad syscall
     - drm: msm: fix error check return value of irq_of_parse_and_map()
     - ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
     - net/mlx5: fs, delete the FTE when there are no rules attached to it
     - ASoC: dapm: Don't fold register value changes into notifications
     - mlxsw: spectrum_dcb: Do not warn about priority changes
     - mlxsw: Treat LLDP packets as control
     - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo
     - HID: bigben: fix slab-out-of-bounds Write in bigben_probe
     - ASoC: tscs454: Add endianness flag in snd_soc_component_driver
     - net: remove two BUG() from skb_checksum_help()
     - [s390x] preempt: disable __preempt_count_add() optimization for
       PROFILE_ALL_BRANCHES
     - perf/amd/ibs: Cascade pmu init functions' return value
     - spi: stm32-qspi: Fix wait_cmd timeout in APM mode
     - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
     - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default
     - ipmi:ssif: Check for NULL msg when handling events and messages
     - ipmi: Fix pr_fmt to avoid compilation issues
     - rtlwifi: Use pr_warn instead of WARN_ONCE
     - media: rga: fix possible memory leak in rga_probe
     - media: coda: limit frame interval enumeration to supported encoder frame
       sizes
     - media: imon: reorganize serialization
     - media: cec-adap.c: fix is_configuring state
     - nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
     - ASoC: rt5645: Fix errorenous cleanup order
     - nbd: Fix hung on disconnect request if socket is closed before
     - net: phy: micrel: Allow probing without .driver_data
     - media: exynos4-is: Fix compile warning
     - ASoC: max98357a: remove dependency on GPIOLIB
     - ASoC: rt1015p: remove dependency on GPIOLIB
     - can: mcp251xfd: silence clang's -Wunaligned-access warning
     - [x86] microcode: Add explicit CPU vendor dependency
     - rxrpc: Return an error to sendmsg if call failed
     - rxrpc, afs: Fix selection of abort codes
     - eth: tg3: silence the GCC 12 array-bounds warning
     - gfs2: use i_lock spin_lock for inode qadata
     - IB/rdmavt: add missing locks in rvt_ruc_loopback
     - [arm64] dts: qcom: msm8994: Fix BLSP[12]_DMA channels count
     - PM / devfreq: rk3399_dmc: Disable edev on remove()
     - crypto: ccree - use fine grained DMA mapping dir
     - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc
     - fs: jfs: fix possible NULL pointer dereference in dbFree()
     - [powerpc*] fadump: Fix fadump to work with a different endian capture
       kernel
     - fat: add ratelimit to fat*_ent_bread()
     - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - ARM: versatile: Add missing of_node_put in dcscb_init
     - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
     - ARM: hisi: Add missing of_node_put after of_find_compatible_node
     - PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
     - tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
     - [powerpc*] powernv/vas: Assign real address to rx_fifo in vas_rx_win_attr
     - [powerpc*] xics: fix refcount leak in icp_opal_init()
     - [powerpc*] powernv: fix missing of_node_put in uv_init()
     - macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
     - [powerpc*] iommu: Add missing of_node_put in iommu_init_early_dart
     - [amd64] RDMA/hfi1: Prevent panic when SDMA is disabled
     - drm: fix EDID struct for old ARM OABI format
     - dt-bindings: display: sitronix, st7735r: Fix backlight in example
     - ath11k: acquire ab->base_lock in unassign when finding the peer by addr
     - ath9k: fix ar9003_get_eepmisc
     - drm/edid: fix invalid EDID extension block filtering
     - drm/bridge: adv7511: clean up CEC adapter when probe fails
     - spi: qcom-qspi: Add minItems to interconnect-names
     - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
     - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
     - [x86] delay: Fix the wrong asm constraint in delay_loop()
     - drm/ingenic: Reset pixclock rate when parent clock rate changes
     - drm/mediatek: Fix mtk_cec_mask()
     - [arm*] drm/vc4: hvs: Reset muxes at probe time
     - [arm*] drm/vc4: txp: Don't set TXP_VSTART_AT_EOF
     - [arm*] drm/vc4: txp: Force alpha to be 0xff if it's disabled
     - bpf: Fix excessive memory allocation in stack_map_alloc()
     - nl80211: show SSID for P2P_GO interfaces
     - drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
     - drm: mali-dp: potential dereference of null pointer
     - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
     - scftorture: Fix distribution of short handler delays
     - net: dsa: mt7530: 1G can also support 1000BASE-X link mode
     - NFC: NULL out the dev->rfkill to prevent UAF
     - efi: Add missing prototype for efi_capsule_setup_info
     - target: remove an incorrect unmap zeroes data deduction
     - drbd: fix duplicate array initializer
     - EDAC/dmc520: Don't print an error for each unconfigured interrupt line
     - mtd: rawnand: denali: Use managed device resources
     - HID: hid-led: fix maximum brightness for Dream Cheeky
     - HID: elan: Fix potential double free in elan_input_configured
     - drm/bridge: Fix error handling in analogix_dp_probe
     - sched/fair: Fix cfs_rq_clock_pelt() for throttled cfs_rq
     - spi: img-spfi: Fix pm_runtime_get_sync() error checking
     - cpufreq: Fix possible race in cpufreq online error path
     - ath9k_htc: fix potential out of bounds access with invalid
       rxstatus->rs_keyix
     - media: hantro: Empty encoder capture buffers by default
     - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01
     - ALSA: pcm: Check for null pointer of pointer substream before
       dereferencing it
     - inotify: show inotify mask flags in proc fdinfo
     - fsnotify: fix wrong lockdep annotations
     - of: overlay: do not break notify on NOTIFY_{OK|STOP}
     - drm/msm/dpu: adjust display_v_end for eDP and DP
     - scsi: ufs: qcom: Fix ufs_qcom_resume()
     - scsi: ufs: core: Exclude UECxx from SFR dump list
     - mtd: spi-nor: core: Check written SR value in
       spi_nor_write_16bit_sr_and_check()
     - [x86] pm: Fix false positive kmemleak report in msr_build_context()
     - mtd: rawnand: cadence: fix possible null-ptr-deref in
       cadence_nand_dt_probe()
     - [x86] speculation: Add missing prototype for unpriv_ebpf_notify()
     - ASoC: rk3328: fix disabling mclk on pclk probe failure
     - perf tools: Add missing headers needed by util/data.h
     - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory
       free during pm runtime resume
     - drm/msm/dp: stop event kernel thread when DP unbind
     - drm/msm/dp: fix error check return value of irq_of_parse_and_map()
     - drm/msm/dsi: fix error checks and return values for DSI xmit functions
     - drm/msm/hdmi: check return value after calling
       platform_get_resource_byname()
     - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
     - drm/msm: add missing include to msm_drv.c
     - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H
     - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
     - perf tools: Use Python devtools for version autodetection rather than
       runtime
     - virtio_blk: fix the discard_granularity and discard_alignment queue limits
     - [x86] Fix return value of __setup handlers
     - irqchip/exiu: Fix acknowledgment of edge triggered interrupts
     - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
     - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value
     - [x86] mm: Cleanup the control_va_addr_alignment() __setup handler
     - [arm64] fix types in copy_highpage()
     - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET
     - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop()
     - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is
       detected
     - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is
       detected
     - drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
     - media: uvcvideo: Fix missing check to determine if element is found in
       list
     - iomap: iomap_write_failed fix
     - spi: spi-fsl-qspi: check return value after calling
       platform_get_resource_byname()
     - Revert "cpufreq: Fix possible race in cpufreq online error path"
     - regulator: qcom_smd: Fix up PM8950 regulator configuration
     - perf/amd/ibs: Use interrupt regs ip for stack unwinding
     - ath11k: Don't check arvif->is_started before sending management frames
     - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe
     - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
     - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
     - ASoC: samsung: Use dev_err_probe() helper
     - ASoC: samsung: Fix refcount leak in aries_audio_probe
     - scripts/faddr2line: Fix overlapping text section failures
     - media: aspeed: Fix an error handling path in aspeed_video_probe()
     - media: exynos4-is: Fix PM disable depth imbalance in fimc_is_probe
     - media: st-delta: Fix PM disable depth imbalance in delta_probe
     - media: exynos4-is: Change clk_disable to clk_disable_unprepare
     - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
     - media: vsp1: Fix offset calculation for plane cropping
     - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
     - Bluetooth: Interleave with allowlist scan
     - Bluetooth: L2CAP: Rudimentary typo fixes
     - Bluetooth: LL privacy allow RPA
     - Bluetooth: use inclusive language in HCI role comments
     - Bluetooth: use inclusive language when filtering devices
     - Bluetooth: use hdev lock for accept_list and reject_list in conn req
     - nvme: set dma alignment to dword
     - lsm,selinux: pass flowi_common instead of flowi to the LSM hooks
     - sctp: read sk->sk_bound_dev_if once in sctp_rcv()
     - net: hinic: add missing destroy_workqueue in hinic_pf_to_mgmt_init
     - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*
     - media: ov7670: remove ov7670_power_off from ov7670_remove
     - media: staging: media: rkvdec: Make use of the helper function
       devm_platform_ioremap_resource()
     - media: rkvdec: h264: Fix dpb_valid implementation
     - media: rkvdec: h264: Fix bit depth wrap in pps packet
     - ext4: reject the 'commit' option on ext2 filesystems
     - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init
     - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set()
     - [x86] sev: Annotate stack change in the #VC handler
     - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path
     - [x86] drm/i915: Fix CFI violation with show_dynamic_id()
     - thermal/drivers/bcm2711: Don't clamp temperature at zero
     - thermal/drivers/broadcom: Fix potential NULL dereference in
       sr_thermal_probe
     - thermal/drivers/core: Use a char pointer for the cooling device name
     - thermal/core: Fix memory leak in __thermal_cooling_device_register()
     - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe
     - ASoC: wm2000: fix missing clk_disable_unprepare() on error in
       wm2000_anc_transition()
     - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
     - ASoC: max98090: Move check for invalid values before casting in
       max98090_put_enab_tlv()
     - net: stmmac: selftests: Use kcalloc() instead of kzalloc()
     - net: stmmac: fix out-of-bounds access in a selftest
     - hv_netvsc: Fix potential dereference of NULL pointer
     - rxrpc: Fix listen() setting the bar too high for the prealloc rings
     - rxrpc: Don't try to resend the request if we're receiving the reply
     - rxrpc: Fix overlapping ACK accounting
     - rxrpc: Don't let ack.previousPacket regress
     - rxrpc: Fix decision on when to generate an IDLE ACK
     - net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc()
     - hinic: Avoid some over memory allocation
     - net/smc: postpone sk_refcnt increment in connect()
     - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399
     - memory: samsung: exynos5422-dmc: Avoid some over memory allocation
     - ARM: dts: suniv: F1C100: fix watchdog compatible
     - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
     - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
     - PCI: cadence: Fix find_first_zero_bit() limit
     - PCI: rockchip: Fix find_first_zero_bit() limit
     - PCI: dwc: Fix setting error return on MSI DMA mapping failure
     - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks
     - soc: qcom: llcc: Add MODULE_DEVICE_TABLE()
     - [x86] KVM: nVMX: Leave most VM-Exit info fields unmodified on failed
       VM-Entry
     - [x86] KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple
       fault
     - platform/chrome: cros_ec: fix error handling in cros_ec_register()
     - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing
     - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls
     - can: xilinx_can: mark bit timing constants as const
     - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96
     - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
     - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C
     - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED
     - ARM: dts: bcm2835-rpi-b: Fix GPIO line names
     - misc: ocxl: fix possible double free in ocxl_file_register_afu
     - crypto: marvell/cesa - ECB does not IV
     - gpiolib: of: Introduce hook for missing gpio-ranges
     - pinctrl: bcm2835: implement hook for missing gpio-ranges
     - arm: mediatek: select arch timer for mt7629
     - powerpc/fadump: fix PT_LOAD segment for boot memory area
     - mfd: ipaq-micro: Fix error check return value of platform_get_irq()
     - scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
     - firmware: arm_scmi: Fix list protocols enumeration in the base protocol
     - nvdimm: Fix firmware activation deadlock scenarios
     - nvdimm: Allow overwrite in the presence of disabled dimms
     - pinctrl: mvebu: Fix irq_of_parse_and_map() return value
     - drivers/base/node.c: fix compaction sysfs file leak
     - dax: fix cache flush on PMD-mapped pages
     - drivers/base/memory: fix an unlikely reference counting issue in
       __add_memory_block()
     - powerpc/8xx: export 'cpm_setbrg' for modules
     - pinctrl: renesas: core: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - powerpc/idle: Fix return value of __setup() handler
     - powerpc/4xx/cpm: Fix return value of __setup() handler
     - ASoC: atmel-pdmic: Remove endianness flag on pdmic component
     - ASoC: atmel-classd: Remove endianness flag on class d component
     - proc: fix dentry/inode overinstantiating under /proc/${pid}/net
     - ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
     - PCI: imx6: Fix PERST# start-up sequence
     - tty: fix deadlock caused by calling printk() under tty_port->lock
     - crypto: sun8i-ss - rework handling of IV
     - crypto: sun8i-ss - handle zero sized sg
     - crypto: cryptd - Protect per-CPU resource by disabling BH.
     - Input: sparcspkr - fix refcount leak in bbc_beep_probe
     - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits
     - hwrng: omap3-rom - fix using wrong clk_disable() in
       omap_rom_rng_runtime_resume()
     - [powerpc*] 64: Only WARN if __pa()/__va() called with bad addresses
     - [powerpc*] perf: Fix the threshold compare group constraint for power9
     - macintosh: via-pmu and via-cuda need RTC_LIB
     - powerpc/fsl_rio: Fix refcount leak in fsl_rio_setup
     - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()
     - mailbox: forward the hrtimer if not queued and under a lock
     - [amd64] RDMA/hfi1: Prevent use of lock before it is initialized
     - Input: stmfts - do not leave device disabled in stmfts_input_open
     - OPP: call of_node_put() on error path in _bandwidth_supported()
     - f2fs: fix dereference of stale list iterator after loop body
     - iommu/mediatek: Add list_del in mtk_iommu_remove
     - i2c: at91: use dma safe buffers
     - cpufreq: mediatek: add missing platform_driver_unregister() on error in
       mtk_cpufreq_driver_init
     - cpufreq: mediatek: Use module_init and add module_exit
     - cpufreq: mediatek: Unregister platform device on exit
     - [mips*] Loongson: Use hwmon_device_register_with_groups() to register
       hwmon
     - i2c: at91: Initialize dma_buf in at91_twi_xfer()
     - dmaengine: idxd: Fix the error handling path in idxd_cdev_register()
     - NFS: Do not report EINTR/ERESTARTSYS as mapping errors
     - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS
     - NFS: Do not report flush errors in nfs_write_end()
     - NFS: Don't report errors from nfs_pageio_complete() more than once
     - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout
     - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
     - dmaengine: stm32-mdma: remove GISR1 register
     - dmaengine: stm32-mdma: rework interrupt handler
     - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler()
     - iommu/amd: Increase timeout waiting for GA log enablement
     - i2c: npcm: Fix timeout calculation
     - i2c: npcm: Correct register access width
     - i2c: npcm: Handle spurious interrupts
     - i2c: rcar: fix PM ref counts in probe error paths
     - perf c2c: Use stdio interface if slang is not supported
     - perf jevents: Fix event syntax error caused by ExtSel
     - f2fs: fix to avoid f2fs_bug_on() in dec_valid_node_count()
     - f2fs: fix to do sanity check on block address in f2fs_do_zero_range()
     - f2fs: fix to clear dirty inode in f2fs_evict_inode()
     - f2fs: fix deadloop in foreground GC
     - f2fs: don't need inode lock for system hidden quota
     - f2fs: fix to do sanity check on total_data_blocks
     - f2fs: fix fallocate to use file_modified to update permissions
       consistently
     - f2fs: fix to do sanity check for inline inode
     - wifi: mac80211: fix use-after-free in chanctx code
     - iwlwifi: mvm: fix assert 1F04 upon reconfig
     - fs-writeback: writeback_sb_inodes：Recalculate 'wrote' according skipped
       pages
     - efi: Do not import certificates from UEFI Secure Boot for T2 Macs
     - bfq: Split shared queues on move between cgroups
     - bfq: Update cgroup information before merging bio
     - bfq: Track whether bfq_group is still online
     - ext4: fix use-after-free in ext4_rename_dir_prepare
     - ext4: fix warning in ext4_handle_inode_extension
     - ext4: fix bug_on in ext4_writepages
     - ext4: filter out EXT4_FC_REPLAY from on-disk superblock field s_state
     - ext4: fix bug_on in __es_tree_search
     - ext4: verify dir block before splitting it (CVE-2022-1184)
     - ext4: avoid cycles in directory h-tree (CVE-2022-1184)
     - ACPI: property: Release subnode properties with data nodes
     - tracing: Fix potential double free in create_var_ref()
     - PCI/PM: Fix bridge_d3_blacklist[] Elo i2 overwrite of Gigabyte X299
     - PCI: qcom: Fix runtime PM imbalance on probe errors
     - PCI: qcom: Fix unbalanced PHY init on probe errors
     - mm, compaction: fast_find_migrateblock() should return pfn in the target
       zone
     - [s390x] perf: obtain sie_block from the right address
     - dlm: fix plock invalid read
     - dlm: fix missing lkb refcount handling
     - ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock
     - scsi: dc395x: Fix a missing check on list iterator
     - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
     - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour.
     - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem
     - drm/nouveau/clk: Fix an incorrect NULL check on list iterator
     - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator
     - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX
     - [x86] drm/i915/dsi: fix VBT send packet port selection for ICL+
     - md: fix an incorrect NULL check in does_sb_need_changing
     - md: fix an incorrect NULL check in md_reload_sb
     - mtd: cfi_cmdset_0002: Move and rename
       chip_check/chip_ready/chip_good_for_write
     - mtd: cfi_cmdset_0002: Use chip_ready() for write on S29GL064N
     - media: coda: Fix reported H264 profile
     - media: coda: Add more H264 levels for CODA960
     - [amd64] RDMA/hfi1: Fix potential integer multiplication overflow errors
     - csky: patch_text: Fixup last cpu should be master
     - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375,
       A38x, A39x
     - irqchip: irq-xtensa-mx: fix initial IRQ affinity
     - cfg80211: declare MODULE_FIRMWARE for regulatory.db
     - mac80211: upgrade passive scan to active scan on DFS channels after beacon
       rx
     - um: chan_user: Fix winch_tramp() return value
     - um: Fix out-of-bounds read in LDT setup
     - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add]
     - ftrace: Clean up hash direct_functions on register failures
     - iommu/msm: Fix an incorrect NULL check on list iterator
     - nodemask.h: fix compilation error with GCC12
     - hugetlb: fix huge_pmd_unshare address update
     - xtensa/simdisk: fix proc_read_simdisk()
     - rtl818x: Prevent using not initialized queues
     - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
     - carl9170: tx: fix an incorrect use of list iterator
     - stm: ltdc: fix two incorrect NULL checks on list iterator
     - bcache: improve multithreaded bch_btree_check()
     - bcache: improve multithreaded bch_sectors_dirty_init()
     - bcache: remove incremental dirty sector counting for
       bch_sectors_dirty_init()
     - bcache: avoid journal no-space deadlock by reserving 1 journal bucket
     - serial: pch: don't overwrite xmit->buf[0] by x_char
     - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
     - gma500: fix an incorrect NULL check on list iterator
     - arm64: dts: qcom: ipq8074: fix the sleep clock frequency
     - phy: qcom-qmp: fix struct clk leak on probe errors
     - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries
     - ARM: pxa: maybe fix gpio lookup tables
     - SMB3: EBADF/EIO errors in rename/open caused by race condition in
       smb2_compound_op
     - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0
     - dt-bindings: gpio: altera: correct interrupt-cells
     - vdpasim: allow to enable a vq repeatedly
     - blk-iolatency: Fix inflight count imbalances and IO hangs on offline
     - coresight: core: Fix coresight device probe failure issue
     - phy: qcom-qmp: fix reset-controller leak on probe errors
     - net: ipa: fix page free in ipa_endpoint_trans_release()
     - net: ipa: fix page free in ipa_endpoint_replenish_one()
     - xfs: set inode size after creating symlink
     - xfs: sync lazy sb accounting on quiesce of read-only mounts
     - xfs: fix chown leaking delalloc quota blocks when fssetxattr fails
     - xfs: fix incorrect root dquot corruption error when switching
       group/project quota types
     - xfs: restore shutdown check in mapped write fault path
     - xfs: force log and push AIL to clear pinned inodes when aborting mount
     - xfs: consider shutdown in bmapbt cursor delete assert
     - xfs: assert in xfs_btree_del_cursor should take into account error
     - kseltest/cgroup: Make test_stress.sh work if run interactively
     - thermal/core: fix a UAF bug in __thermal_cooling_device_register()
     - thermal/core: Fix memory leak in the error path
     - bfq: Avoid merging queues with different parents
     - bfq: Drop pointless unlock-lock pair
     - bfq: Remove pointless bfq_init_rq() calls
     - bfq: Get rid of __bio_blkcg() usage
     - bfq: Make sure bfqg for which we are queueing requests is online
     - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq
     - Revert "random: use static branch for crng_ready()"
     - RDMA/rxe: Generate a completion for unsupported/invalid opcode
     - [mips*] IP27: Remove incorrect `cpu_has_fpu' override
     - [mips*] IP30: Remove incorrect `cpu_has_fpu' override
     - ext4: only allow test_dummy_encryption when supported
     - md: bcache: check the return value of kzalloc() in
       detached_dev_do_request()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.122
     - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
     - staging: greybus: codecs: fix type confusion of list iterator variable
     - iio: adc: ad7124: Remove shift from scan_type
     - tty: goldfish: Use tty_port_destroy() to destroy port
     - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
     - tty: n_tty: Restore EOF push handling behavior
     - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
       and ida_simple_get
     - usb: usbip: fix a refcount leak in stub_probe()
     - usb: usbip: add missing device lock on tweak configuration cmd
     - USB: storage: karma: fix rio_karma_init return
     - usb: musb: Fix missing of_node_put() in omap2430_probe
     - staging: fieldbus: Fix the error handling path in
       anybuss_host_common_probe()
     - pwm: lp3943: Fix duty calculation in case period was clamped
     - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
     - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
     - misc: fastrpc: fix an incorrect NULL check on list iterator
     - firmware: stratix10-svc: fix a missing check on list iterator
     - usb: typec: mux: Check dev_set_name() return value
     - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
     - iio: proximity: vl53l0x: Fix return value check of
       wait_for_completion_timeout
     - iio: adc: sc27xx: fix read big scale voltage not right
     - iio: adc: sc27xx: Fine tune the scale calibration values
     - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
     - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
     - serial: sifive: Report actual baud base rather than fixed 115200
     - coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier
     - extcon: ptn5150: Add queue work sync before driver release
     - soc: rockchip: Fix refcount leak in rockchip_grf_init
     - rtc: mt6397: check return value after calling platform_get_resource()
     - serial: meson: acquire port->lock in startup()
     - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485
     - serial: digicolor-usart: Don't allow CS5-6
     - serial: rda-uart: Don't allow CS5-6
     - serial: txx9: Don't allow CS5-6
     - serial: sh-sci: Don't allow CS5-6
     - serial: sifive: Sanitize CSIZE and c_iflag
     - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7
     - serial: stm32-usart: Correct CSIZE, bits, and parity
     - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
     - bus: ti-sysc: Fix warnings for unbind for serial
     - driver: base: fix UAF when driver_attach failed
     - driver core: fix deadlock in __device_attach
     - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking
     - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe
     - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition
     - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value
     - [s390x] crypto: fix scatterwalk_unmap() callers in AES-GCM
     - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog
     - net: ethernet: mtk_eth_soc: out of bounds read in
       mtk_hwlro_get_fdir_entry()
     - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks
     - net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
     - modpost: fix removing numeric suffixes
     - jffs2: fix memory leak in jffs2_do_fill_super
     - ubi: fastmap: Fix high cpu usage of ubi_bgt by making sure wl_pool not
       empty
     - ubi: ubi_create_volume: Fix use-after-free when volume creation failed
     - bpf: Fix probe read error in ___bpf_prog_run()
     - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct
       smc_wr_tx_pend_priv *"
     - nfp: only report pause frame configuration for physical device
     - sfc: fix considering that all channels have TX queues
     - sfc: fix wrong tx channel offset with efx_separate_tx_channels
     - net/mlx5: Don't use already freed action pointer
     - net/mlx5: correct ECE offset in query qp output
     - net/mlx5e: Update netdev features after changing XDP state
     - net: sched: add barrier to fix packet stuck problem for lockless qdisc
     - tcp: tcp_rtx_synack() can be called from process context
     - gpio: pca953x: use the correct register address to do regcache sync
     - afs: Fix infinite loop found by xfstest generic/676
     - scsi: sd: Fix potential NULL pointer dereference
     - tipc: check attribute length for bearer name
     - driver core: Fix wait_for_device_probe() & deferred_probe_timeout
       interaction
     - perf c2c: Fix sorting in percent_rmt_hitm_cmp()
     - dmaengine: idxd: set DMA_INTERRUPT cap bit
     - mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
     - bootconfig: Make the bootconfig.o as a normal object file
     - tracing: Fix sleeping function called from invalid context on RT kernel
     - tracing: Avoid adding tracer option before update_tracer_options
     - iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe()
     - iommu/arm-smmu-v3: check return value after calling
       platform_get_resource()
     - f2fs: remove WARN_ON in f2fs_is_valid_blkaddr
     - i2c: cadence: Increase timeout per message if necessary
     - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type
     - NFSv4: Don't hold the layoutget locks across multiple RPC calls
     - video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
     - video: fbdev: pxa3xx-gcu: release the resources correctly in
       pxa3xx_gcu_probe/remove()
     - xprtrdma: treat all calls not a bcall when bc_serv is NULL
     - netfilter: nat: really support inet nat without l3 address
     - netfilter: nf_tables: delete flowtable hooks via transaction list
     - powerpc/kasan: Force thread size increase with KASAN
     - netfilter: nf_tables: always initialize flowtable hook list in transaction
     - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe
     - netfilter: nf_tables: release new hooks on unsupported flowtable flags
     - netfilter: nf_tables: memleak flow rule from commit path
     - netfilter: nf_tables: bail out early if hardware offload is not supported
     - xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
     - af_unix: Fix a data-race in unix_dgram_peer_wake_me().
     - bpf, arm64: Clear prog->jited_len along prog->jited
     - net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
     - net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure
     - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer()
     - net: mdio: unexport __init-annotated mdio_bus_init()
     - net: xfrm: unexport __init-annotated xfrm4_protocol_init()
     - net: ipv6: unexport __init-annotated seg6_hmac_init()
     - net/mlx5: Rearm the FW tracer after each tracer event
     - net/mlx5: fs, fail conflicting actions
     - ip_gre: test csum_start instead of transport header
     - net: altera: Fix refcount leak in altera_tse_mdio_create
     - drm: imx: fix compiler warning with gcc-12
     - iio: dummy: iio_simple_dummy: check the return value of kstrdup()
     - staging: rtl8712: fix a potential memory leak in r871xu_drv_init()
     - iio: st_sensors: Add a local lock for protecting odr
     - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean()
     - tty: Fix a possible resource leak in icom_probe
     - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()
     - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop()
     - USB: host: isp116x: check return value after calling
       platform_get_resource()
     - drivers: tty: serial: Fix deadlock in sa1100_set_termios()
     - drivers: usb: host: Fix deadlock in oxu_bus_suspend()
     - USB: hcd-pci: Fully suspend across freeze/thaw cycle
     - sysrq: do not omit current cpu when showing backtrace of all active CPUs
     - usb: dwc2: gadget: don't reset gadget's driver->bus
     - misc: rtsx: set NULL intfdata when probe fails
     - extcon: Modify extcon device to be created after driver data is set
     - clocksource/drivers/sp804: Avoid error on multiple instances
     - staging: rtl8712: fix uninit-value in usb_read8() and friends
     - staging: rtl8712: fix uninit-value in r871xu_drv_init()
     - serial: msm_serial: disable interrupts in __msm_console_write()
     - kernfs: Separate kernfs_pr_cont_buf and rename_lock.
     - watchdog: wdat_wdt: Stop watchdog when rebooting the system
     - md: protect md_unregister_thread from reentrancy
     - scsi: myrb: Fix up null pointer access on myrb_cleanup()
     - Revert "net: af_key: add check for pfkey_broadcast in function
       pfkey_process"
     - ceph: allow ceph.dir.rctime xattr to be updatable
     - drm/radeon: fix a possible null pointer dereference
     - modpost: fix undefined behavior of is_arm_mapping_symbol()
     - [x86] cpu: Elide KCSAN for cpu_has() and friends
     - jump_label,noinstr: Avoid instrumentation for JUMP_LABEL=n builds
     - nbd: call genl_unregister_family() first in nbd_cleanup()
     - nbd: fix race between nbd_alloc_config() and module removal
     - nbd: fix io hung while disconnecting device
     - [s390x] gmap: voluntarily schedule during key setting
     - cifs: version operations for smb20 unneeded when legacy support disabled
     - nodemask: Fix return values to be unsigned
     - vringh: Fix loop descriptors check in the indirect cases
     - scripts/gdb: change kernel config dumping method
     - ALSA: hda/conexant - Fix loopback issue with CX20632
     - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo
       Yoga DuetITL 2021
     - cifs: return errors during session setup during reconnects
     - cifs: fix reconnect on smb3 mount types
     - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files
     - mmc: block: Fix CQE recovery reset success
     - net: phy: dp83867: retrigger SGMII AN when link change
     - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION
     - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling
     - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION
     - ixgbe: fix bcast packets Rx on VF after promisc removal
     - ixgbe: fix unexpected VLAN Rx in promisc mode on VF
     - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag
     - drm/bridge: analogix_dp: Support PSR-exit to disable transition
     - drm/atomic: Force bridge self-refresh-exit on CRTC switch
     - [powerpc*] 32: Fix overread/overwrite of thread_struct via ptrace
       (CVE-2022-32981)
     - [powerpc*] mm: Switch obsolete dssall to .long
     - interconnect: qcom: sc7180: Drop IP0 interconnects
     - interconnect: Restore sync state by ignoring ipa-virt in provider count
     - md/raid0: Ignore RAID0 layout if the second zone has only one device
     - PCI: qcom: Fix pipe clock imbalance
     - zonefs: fix handling of explicit_open option on mount
     - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT
     - tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.123
     - [x86] Mitigate Processor MMIO Stale Data vulnerabilities
       (CVE-2022-21123, CVE-2022-21125, CVE-2022-21166):
       + Documentation: Add documentation for Processor MMIO Stale Data
       + x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
       + x86/speculation: Add a common function for MD_CLEAR mitigation update
       + x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
       + x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
       + x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
       + x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
       + x86/speculation/srbds: Update SRBDS mitigation selection
       + x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
       + KVM: x86/speculation: Disable Fill buffer clear within guests
       + x86/speculation/mmio: Print SMT warning
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.124
     - 9p: missing chunk of "fs/9p: Don't update file type when updating file
       attributes"
     - nfsd: Replace use of rwsem with errseq_t
     - bpf: Fix incorrect memory charge cost calculation in stack_map_alloc()
     - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()
     - quota: Prevent memory allocation recursion while holding dq_lock
     - [armhf] ASoC: es8328: Fix event generation for deemphasis control
     - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to
       dmi_use_low_level_irq
     - scsi: vmw_pvscsi: Expand vcpuHint to 16 bits
     - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology
     - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd
       completion
     - scsi: ipr: Fix missing/incorrect resource cleanup in error case
     - scsi: pmcraid: Fix missing resource cleanup in error case
     - ALSA: hda/realtek - Add HW8326 support
     - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration
       failed
     - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg
     - random: credit cpu and bootloader seeds by default
     - pNFS: Don't keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE
     - pNFS: Avoid a live lock condition in pnfs_update_layout()
     - [x86] clocksource: hyper-v: unexport __init-annotated
       hv_init_clocksource()
     - i40e: Fix adding ADQ filter to TC0
     - i40e: Fix calculating the number of queue pairs
     - i40e: Fix call trace in setup_tx_descriptors
     - [x86] Drivers: hv: vmbus: Release cpu lock in error case
     - [x86] drm/i915/reset: Fix error_state_read ptr + offset use
     - nvme: use sysfs_emit instead of sprintf
     - nvme: add device name to warning in uuid_show()
     - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg
     - [arm64] ftrace: fix branch range checks
     - [arm64] ftrace: consistently handle PLTs.
     - block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
     - faddr2line: Fix overlapping text section failures, the sequel
     - [arm64,armhf] irqchip/gic-v3: Fix error handling in
       gic_populate_ppi_partitions
     - [arm64,armhf] irqchip/gic-v3: Fix refcount leak in
       gic_populate_ppi_partitions
     - i2c: designware: Use standard optional ref clock implementation
     - [x86] mei: me: add raptor lake point S DID
     - [x86] comedi: vmk80xx: fix expression for tx buffer size
     - USB: serial: option: add support for Cinterion MV31 with new baseline
     - USB: serial: io_ti: add Agilent E5805A support
     - [arm*] usb: dwc2: Fix memory leak in dwc2_hcd_init
     - serial: 8250: Store to lsr_save_flags after lsr read
     - dm mirror log: round up region bitmap size to BITS_PER_LONG
     - drm/amd/display: Cap OLED brightness per max frame-average luminance
     - ext4: fix bug_on ext4_mb_use_inode_pa
     - ext4: make variable "count" signed
     - ext4: add reserved GDT blocks check
     - [arm64] KVM: arm64: Don't read a HW interrupt pending state in user
       context
     - [x86] KVM: x86: Account a variety of miscellaneous allocations
     - [x86] KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel
       data leak
     - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine
     - virtio-pci: Remove wrong address verification in vp_del_vqs()
     - dma-direct: don't over-decrypt memory
     - net/sched: act_police: more accurate MTU policing
     - net: openvswitch: fix misuse of the cached connection on tuple changes
     - Revert "PCI: Make pci_enable_ptm() private"
     - igc: Enable PCIe PTM
     - [arm64] clk: imx8mp: fix usb_root_clk parent
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.125
     - [s390x] mm: use non-quiescing sske for KVM switch to keyed guest
     - zonefs: fix zonefs_iomap_begin() for reads
     - usb: gadget: u_ether: fix regression in setting fixed MAC address
     - tcp: add some entropy in __inet_hash_connect()
     - tcp: use different parts of the port_offset for index and offset
       (CVE-2022-1012)
     - tcp: add small random increments to the source port (CVE-2022-1012)
     - tcp: dynamically allocate the perturb table used by source ports
       (CVE-2022-1012)
     - tcp: increase source port perturb table to 2^16 (CVE-2022-1012,
       CVE-2022-32296)
     - tcp: drop the hash_32() part from the index calculation (CVE-2022-1012)
     - serial: core: Initialize rs485 RTS polarity already on probe
     - [arm64] mm: Don't invalidate FROM_DEVICE buffers at start of DMA transfer
     - io_uring: add missing item types for various requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.126
     - io_uring: use separate list entry for iopoll requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.127
     - vt: drop old FONT ioctls
     - random: schedule mix_interrupt_randomness() less often
     - random: quiet urandom warning ratelimit suppression message
     - ALSA: hda/via: Fix missing beep setup
     - ALSA: hda/conexant: Fix missing beep setup
     - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop
     - ALSA: hda/realtek - ALC897 headset MIC no sound
     - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly
     - ALSA: hda/realtek: Add quirk for Clevo PD70PNT
     - ALSA: hda/realtek: Add quirk for Clevo NS50PU
     - net: openvswitch: fix parsing of nw_proto for IPv6 fragments
     - btrfs: add error messages to all unrecognized mount options
     - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing
     - [armhf] mtd: rawnand: gpmi: Fix setting busy timeout setting
     - ata: libata: add qc->flags in ata_qc_complete_template tracepoint
     - dm era: commit metadata in postsuspend after worker stops
     - dm mirror log: clear log bits up to BITS_PER_LONG boundary
     - USB: serial: option: add Telit LE910Cx 0x1250 composition
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: option: add Quectel RM500K module support
     - [arm64] drm/msm: Fix double pm_runtime_disable() call
     - netfilter: nftables: add nft_parse_register_load() and use it
     - netfilter: nftables: add nft_parse_register_store() and use it
     - netfilter: use get_random_u32 instead of prandom
     - scsi: scsi_debug: Fix zone transition to full condition
     - [arm64] drm/msm: use for_each_sgtable_sg to iterate over scatterlist
     - bpf: Fix request_sock leak in sk lookup helpers
     - [arm64,armhf] drm/sun4i: Fix crash during suspend after component bind
       failure
     - [amd64] bpf, x86: Fix tail call count offset calculation on bpf2bpf call
     - phy: aquantia: Fix AN when higher speeds than 1G are not advertised
     - tipc: simplify the finalize work queue
     - tipc: fix use-after-free Read in tipc_named_reinit
     - igb: fix a use-after-free issue in igb_clean_tx_ring
     - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     - net/sched: sch_netem: Fix arithmetic in netem_dump() for 32-bit platforms
     - [arm64] drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf
     - [arm64] drm/msm/dp: check core_initialized before disable interrupts at
       dp_display_unbind()
     - [arm64] drm/msm/dp: fixes wrong connection state caused by failure of link
       train
     - [arm64] drm/msm/dp: deinitialize mainlink if link training failed
     - [arm64] drm/msm/dp: promote irq_hpd handle to handle link training
       correctly
     - [arm64] drm/msm/dp: fix connect/disconnect handled at irq_hpd
     - erspan: do not assume transport header is always set
     - x86/xen: Remove undefined behavior in setup_features()
     - afs: Fix dynamic root getattr
     - ice: ethtool: advertise 1000M speeds properly
     - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips
     - igb: Make DMA faster when CPU is active on the PCIe link
     - virtio_net: fix xdp_rxq_info bug after suspend/resume
     - nvme: centralize setting the timeout in nvme_alloc_request
     - nvme: split nvme_alloc_request()
     - nvme: mark nvme_setup_passsthru() inline
     - nvme: don't check nvme_req flags for new req
     - nvme-pci: allocate nvme_command within driver pdu
     - nvme-pci: add NO APST quirk for Kioxia device
     - nvme: move the Samsung X5 quirk entry to the core quirks
     - [s390x] cpumf: Handle events cycles and instructions identical
     - iio: mma8452: fix probe fail when device tree compatible is used.
     - iio: adc: vf610: fix conversion mode sysfs node name
     - xhci: turn off port power in shutdown
     - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI
     - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI
     - [arm64,armhf] usb: chipidea: udc: check request status before setting
       device address
     - f2fs: attach inline_data after setting compression
     - iio:accel:bma180: rearrange iio trigger get and register
     - iio:accel:mxc4005: rearrange iio trigger get and register
     - iio: accel: mma8452: ignore the return value of reset operation
     - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up()
     - iio: imu: inv_icm42600: Fix broken icm42600 (chip id 0 value)
     - iio: adc: axp288: Override TS pin bias current for some models
     - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client
     - [powerpc*] Enable execve syscall exit tracepoint
     - [powerpc*] rtas: Allow ibm,platform-dump RTAS call with null buffer
       address
     - [powerpc*] powernv: wire up rng during setup_arch
     - [armhf] exynos: Fix refcount leak in exynos_map_pmu
     - modpost: fix section mismatch check for exported init/exit sections
     - random: update comment from copy_to_user() -> copy_to_iter()
     - [powerpc*] pseries: wire up rng during setup_arch()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.120-rt70
   * [rt] Drop "crypto: cryptd - add a lock instead
     preempt_disable/local_bh_disable" patch
   * Bump ABI to 16
 .
   [ Ben Hutchings ]
   * random: Enable RANDOM_TRUST_BOOTLOADER. This can be reverted using the
     kernel parameter: random.trust_bootloader=off
   * [armel,armhf] crypto: Enable optimised implementations (see #922204):
     - Enable CRYPTO_SHA256_ARM, CRYPTO_SHA512_ARM as modules
     - [armhf] Enable SHA1_ARM_NEON, CRYPTO_SHA1_ARM_CE, CRYPTO_SHA2_ARM_CE,
       CRYPTO_AES_ARM_BS, CRYPTO_AES_ARM_CE, CRYPTO_GHASH_ARM_CE,
       CRYPTO_CRCT10DIF_ARM_CE, CRYPTO_CRC32_ARM_CE as modules
linux-signed-amd64 (5.10.120+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.120-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.114
     - USB: quirks: add a Realtek card reader
     - USB: quirks: add STRING quirk for VCOM device
     - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
     - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader
     - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB
     - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
     - xhci: Enable runtime PM on second Alderlake controller
     - xhci: stop polling roothubs after shutdown
     - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
     - iio: dac: ad5592r: Fix the missing return value.
     - iio: dac: ad5446: Fix read_raw not returning set value
     - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
     - iio: imu: inv_icm42600: Fix I2C init possible nack
     - usb: misc: fix improper handling of refcount in uss720_probe()
     - [arm64,x86] usb: typec: ucsi: Fix reuse of completion structure
     - [arm64,x86] usb: typec: ucsi: Fix role swapping
     - usb: gadget: uvc: Fix crash when encoding data for usb request
     - usb: gadget: configfs: clear deactivation flag in
       configfs_composite_unbind()
     - [arm64,armhf] usb: dwc3: Try usb-role-switch first in dwc3_drd_init
     - [arm64,armhf] usb: dwc3: core: Fix tx/rx threshold settings
     - [arm64,armhf] usb: dwc3: core: Only handle soft-reset in DCTL
     - [arm64,armhf] usb: dwc3: gadget: Return proper request status
     - [arm*] usb: phy: generic: Get the vbus supply
     - [arm64,armhf] serial: imx: fix overrun interrupts in DMA mode
     - serial: 8250: Also set sticky MCR bits in console restoration
     - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
     - [arm64,armhf] arch_topology: Do not set llc_sibling if llc_id is invalid
     - hex2bin: make the function hex_to_bin constant-time
     - hex2bin: fix access beyond string end
     - iocost: don't reset the inuse weight of under-weighted debtors
     - video: fbdev: udlfb: properly check endpoint type
     - iio:imu:bmi160: disable regulator in error path
     - USB: Fix xhci event ring dequeue pointer ERDP update issue
     - [armhf] phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
     - [armhf] phy: samsung: exynos5250-sata: fix missing device put in probe
       error paths
     - [armhf] OMAP2+: Fix refcount leak in omap_gic_of_init
     - [armhf] bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific
     - [armhf] phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
     - [armhf] dts: am3517-evm: Fix misc pinmuxing
     - [armhf] dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35
     - ipvs: correctly print the memory size of ip_vs_conn_tab
     - [armhf] pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered
       IRQs in EOI
     - [arm64,armhf] net: dsa: Add missing of_node_put() in
       dsa_port_link_register_of
     - netfilter: nft_set_rbtree: overlap detection with element re-addition
       after deletion
     - bpf, lwt: Fix crash when using bpf_skb_set_tunnel_key() from bpf_xmit lwt
       hook
     - [arm64,armhf] pinctrl: rockchip: fix RK3308 pinmux bits
     - tcp: md5: incorrect tcp_header_len for incoming connections
     - [armhf] pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ
       requested
     - tcp: ensure to use the most recently sent skb when filling the rate sample
     - wireguard: device: check for metadata_dst with skb_valid_dst()
     - sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     - [arm64] dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock
     - [arm64] net: hns3: modify the return code of hclge_get_ring_chain_from_mbx
     - [arm64] net: hns3: add validity check for message data length
     - [arm64] net: hns3: add return value for mailbox handling in PF
     - net/smc: sync err code when tcp connection was refused
     - ip_gre: Make o_seqno start from 0 in native mode
     - ip6_gre: Make o_seqno start from 0 in native mode
     - ip_gre, ip6_gre: Fix race condition on o_seqno in collect_md mode
     - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT
     - tcp: make sure treq->af_specific is initialized
     - [arm64,armhf] bus: sunxi-rsb: Fix the return value of
       sunxi_rsb_device_create()
     - [arm64,armhf] clk: sunxi: sun9i-mmc: check return value after calling
       platform_get_resource()
     - [arm64] net: bcmgenet: hide status block before TX timestamping
     - net: phy: marvell10g: fix return value on error
     - bnx2x: fix napi API usage sequence
     - [arm64,armhf] net: fec: add missing of_node_put() in
       fec_enet_init_stop_mode()
     - ixgbe: ensure IPsec VF<->PF compatibility
     - tcp: fix F-RTO may not work correctly when receiving DSACK
     - [x86] ASoC: Intel: soc-acpi: correct device endpoints for max98373
     - ext4: fix bug_on in start_this_handle during umount filesystem
     - [amd64] x86: __memcpy_flushcache: fix wrong alignment if size > 2^32
     - cifs: destage any unwritten data to the server before calling
       copychunk_write
     - [x86] drivers: net: hippi: Fix deadlock in rr_close()
     - zonefs: Fix management of open zones
     - zonefs: Clear inode information flags on inode creation
     - [x86] drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses
     - [armhf] net: ethernet: stmmac: fix write to sgmii_adapter_base
     - [x86] thermal: int340x: Fix attr.show callback prototype
     - [x86] cpu: Load microcode during restore_processor_state()
     - tty: n_gsm: fix restart handling via CLD command
     - tty: n_gsm: fix decoupled mux resource
     - tty: n_gsm: fix mux cleanup after unregister tty device
     - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2
     - tty: n_gsm: fix malformed counter for out of frame data
     - netfilter: nft_socket: only do sk lookups when indev is available
     - tty: n_gsm: fix insufficient txframe size
     - tty: n_gsm: fix wrong DLCI release order
     - tty: n_gsm: fix missing explicit ldisc flush
     - tty: n_gsm: fix wrong command retry handling
     - tty: n_gsm: fix wrong command frame length field encoding
     - tty: n_gsm: fix reset fifo race condition
     - tty: n_gsm: fix incorrect UA handling
     - tty: n_gsm: fix software flow control handling
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.115
     - [mips*] Fix CP0 counter erratum detection for R4k CPUs
     - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers
     - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
     - [arm64] mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC
     - mmc: core: Set HS clock speed before sending HS CMD13
     - gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
     - [x86] KVM: x86/svm: Account for family 17h event renumberings in
       amd_pmc_perf_hw_id
     - [amd64] iommu/vt-d: Calculate mask for non-aligned flushes
     - Revert "SUNRPC: attempt AF_LOCAL connect on setup"
     - firewire: fix potential uaf in outbound_phy_packet_callback()
     - firewire: remove check of list iterator against head past the loop body
     - firewire: core: extend card->lock in fw_core_handle_bus_reset
     - net: stmmac: disable Split Header (SPH) for Intel platforms
     - genirq: Synchronize interrupt thread startup
     - ASoC: da7219: Fix change notifications for tone generator frequency
     - [s390x] dasd: fix data corruption for ESE devices
     - [s390x] dasd: prevent double format of tracks for ESE devices
     - [s390x] dasd: Fix read for ESE with blksize < 4k
     - [s390x] dasd: Fix read inconsistency for ESE DASD devices
     - can: isotp: remove re-binding of bound socket
     - nfc: replace improper check device_is_registered() in netlink related
       functions (CVE-2022-1974)
     - NFC: netlink: fix sleep in atomic bug when firmware download timeout
       (CVE-2022-1975)
     - [arm64,armhf] gpio: pca953x: fix irq_stat not updated when irq is disabled
       (irq_mask not set)
     - hwmon: (adt7470) Fix warning on module removal
     - [arm*] ASoC: dmaengine: Restore NULL prepare_slave_config() callback
     - net/mlx5e: Fix trust state reset in reload
     - net/mlx5e: Don't match double-vlan packets if cvlan is not set
     - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft
       release
     - net/mlx5e: Fix the calling of update_buffer_lossy() API
     - net/mlx5: Avoid double clear or set of sync reset requested
     - NFSv4: Don't invalidate inode attributes on delegation return
     - [arm64,armhf] net: stmmac: dwmac-sun8i: add missing of_node_put() in
       sun8i_dwmac_register_mdio_mux()
     - [armhf] net: cpsw: add missing of_node_put() in cpsw_probe_dt()
     - hinic: fix bug of wq out of bound access
     - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
     - bnxt_en: Fix unnecessary dropping of RX packets
     - [arm64,armhf] smsc911x: allow using IRQ0
     - btrfs: always log symlinks in full mode
     - net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
     - [x86] kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has
       architectural PMU
     - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu
     - [x86] kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
     - [x86] KVM: x86: Do not change ICR on write to APIC_SELF_IPI
     - [x86] KVM: x86/mmu: avoid NULL-pointer dereference on page freeing bugs
     - [x86] KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is
       advertised
     - rcu: Fix callbacks processing time limit retaining cond_resched()
     - rcu: Apply callbacks processing time limit only on softirq
     - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
       (CVE-2022-0494)
     - dm: interlock pending dm_io and dm_wait_for_bios_completion
     - [arm64] PCI: aardvark: Clear all MSIs at setup
     - [arm64] PCI: aardvark: Fix reading MSI interrupt number
     - mmc: rtsx: add 74 Clocks in power on flow
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.116
     - regulator: consumer: Add missing stubs to regulator/consumer.h
     - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
     - nfp: bpf: silence bitwise vs. logical OR warning
     - Bluetooth: Fix the creation of hdev->name
     - mm: fix missing cache flush for all tail pages of compound page
     - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
     - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and
       __mcopy_atomic()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.117
     - batman-adv: Don't skb_split skbuffs with frag_list
     - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing
     - hwmon: (tmp401) Add OF device ID table
     - mac80211: Reset MBSSID parameters upon connection
     - net: Fix features skip in for_each_netdev_feature()
     - [arm64] net: mscc: ocelot: fix last VCAP IS1/IS2 filter persisting in
       hardware when deleted
     - [arm64] net: mscc: ocelot: fix VCAP IS2 filters matching on both lookups
     - [arm64] net: mscc: ocelot: restrict tc-trap actions to VCAP IS2 lookup 0
     - [arm64] net: mscc: ocelot: avoid corrupting hardware counters when moving
       VCAP filters
     - ipv4: drop dst in multicast routing path
     - drm/nouveau: Fix a potential theorical leak in
       nouveau_get_backlight_name()
     - netlink: do not reset transport header in netlink_recvmsg()
     - sfc: Use swap() instead of open coding it
     - net: sfc: fix memory leak due to ptp channel
     - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
     - nfs: fix broken handling of the softreval mount option
     - dim: initialize all struct fields
     - [s390x] ctcm: fix variable dereferenced before check
     - [s390x] ctcm: fix potential memory leak
     - [s390x] lcs: fix variable dereferenced before check
     - net/sched: act_pedit: really ensure the skb is writable
     - [arm64] net: bcmgenet: Check for Wake-on-LAN interrupt probe deferral
     - [armhf] net: dsa: bcm_sf2: Fix Wake-on-LAN with mac_link_down()
     - net/smc: non blocking recvmsg() return -EAGAIN when no data and
       signal_pending
     - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
     - gfs2: Fix filesystem block deallocation for short writes
     - hwmon: (f71882fg) Fix negative temperature
     - ASoC: max98090: Reject invalid values in custom control put()
     - ASoC: max98090: Generate notifications on changes for custom control
     - ASoC: ops: Validate input values in snd_soc_put_volsw_range()
     - net: sfp: Add tx-fault workaround for Huawei MA5671A SFP ONT
     - tcp: resalt the secret every 10 seconds (CVE-2022-1012)
     - firmware_loader: use kernel credentials when reading firmware
     - tty: n_gsm: fix mux activation issues in gsm_config()
     - usb: cdc-wdm: fix reading stuck on device close
     - USB: serial: pl2303: add device id for HP LM930 Display
     - USB: serial: qcserial: add support for Sierra Wireless EM7590
     - USB: serial: option: add Fibocom L610 modem
     - USB: serial: option: add Fibocom MA510 modem
     - ceph: fix setting of xattrs on async created inodes
     - drm/nouveau/tegra: Stop using iommu_present()
     - i40e: i40e_main: fix a missing check on list iterator
     - [amd64,arm64] net: atlantic: always deep reset on pm op, fixing up my null
       deref regression
     - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
     - [x86] drm/vmwgfx: Initialize drm_mode_fb_cmd2
     - SUNRPC: Clean up scheduling of autoclose
     - SUNRPC: Prevent immediate close+reconnect
     - SUNRPC: Don't call connect() more than once on a TCP socket
     - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
       (CVE-2022-28893)
     - net: phy: Fix race condition on link status change
     - [arm*] arm[64]/memremap: don't abuse pfn_valid() to ensure presence of
       linear map
     - ping: fix address binding wrt vrf
     - usb: gadget: uvc: rename function to be more consistent
     - usb: gadget: uvc: allow for application to cleanly shutdown
     - io_uring: always use original task when preparing req identity
       (CVE-2022-1786)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.118
     - io_uring: always grab file table for deferred statx
     - floppy: use a statically allocated error counter
     - [x86] Revert "drm/i915/opregion: check port number bounds for SWSCI
       display power state"
     - igc: Remove _I_PHY_ID checking
     - igc: Remove phy->type checking
     - igc: Update I226_K device ID
     - rtc: fix use-after-free on device removal
     - [arm64] rtc: pcf2127: fix bug when reading alarm registers
     - Input: add bounds checking to input_set_capability()
     - nvme-pci: add quirks for Samsung X5 SSDs
     - gfs2: Disable page faults during lockless buffered reads
     - [arm64,armhf] rtc: sun6i: Fix time overflow handling
     - [armhf] crypto: stm32 - fix reference leak in stm32_crc_remove
     - [amd64] crypto: x86/chacha20 - Avoid spurious jumps to other functions
     - ALSA: hda/realtek: Enable headset mic on Lenovo P360
     - [s390x] pci: improve zpci_dev reference counting
     - nvme-multipath: fix hang when disk goes live over reconnect
     - rtc: mc146818-lib: Fix the AltCentury for AMD platforms
     - fs: fix an infinite loop in iomap_fiemap
     - drbd: remove usage of list iterator variable after loop
     - [arm64] platform/chrome: cros_ec_debugfs: detach log reader wq from devm
     - [armel,armhf] 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in
       unwind_frame()
     - nilfs2: fix lockdep warnings in page operations for btree nodes
     - nilfs2: fix lockdep warnings during disk space reclamation
     - Revert "swiotlb: fix info leak with DMA_FROM_DEVICE"
     - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
       (CVE-2022-0854)
     - ALSA: usb-audio: Restore Rane SL-1 quirk
     - [i386] ALSA: wavefront: Proper check of get_user() error
     - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
     - perf: Fix sys_perf_event_open() race against self (CVE-2022-1729)
     - selinux: fix bad cleanup on error in hashtab_duplicate()
     - Fix double fget() in vhost_net_set_backend()
     - PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
     - [x86] KVM: x86/mmu: Update number of zapped pages even if page list is
       stable
     - [arm64] paravirt: Use RCU read locks to guard stolen_time
     - [arm64] mte: Ensure the cleared tags are visible before setting the PTE
     - [arm64] crypto: qcom-rng - fix infinite loop on requests not multiple of
       WORD_SZ
     - libceph: fix potential use-after-free on linger ping and resends
     - drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
     - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
     - [armhf] pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl
     - [arm64] net: macb: Increment rx bd head after allocating skb and buffer
     - net: evaluate net.ipvX.conf.all.disable_policy and disable_xfrm
     - xfrm: Add possibility to set the default to block if we have no policy
     - net: xfrm: fix shift-out-of-bounce
     - xfrm: make user policy API complete
     - xfrm: notify default policy on update
     - xfrm: fix dflt policy check when there is no policy configured
     - xfrm: rework default policy structure
     - xfrm: fix "disable_policy" flag use when arriving from different devices
     - net/sched: act_pedit: sanitize shift argument before usage
     - [x86] net: vmxnet3: fix possible use-after-free bugs in
       vmxnet3_rq_alloc_rx_buf()
     - [x86] net: vmxnet3: fix possible NULL pointer dereference in
       vmxnet3_rq_cleanup()
     - ice: fix possible under reporting of ethtool Tx and Rx statistics
     - net/qla3xxx: Fix a test in ql_reset_work()
     - net/mlx5e: Properly block LRO when XDP is enabled
     - net: af_key: add check for pfkey_broadcast in function pfkey_process
     - [armhf] 9196/1: spectre-bhb: enable for Cortex-A15
     - [armel,armhf] 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
     - igb: skip phy status check where unavailable
     - net: bridge: Clear offload_fwd_mark when passing frame up bridge
       interface.
     - [arm*] gpio: mvebu/pwm: Refuse requests with inverted polarity
     - scsi: qla2xxx: Fix missed DMA unmap for aborted commands
     - mac80211: fix rx reordering with non explicit / psmp ack policy
     - nl80211: validate S1G channel width
     - nl80211: fix locking in nl80211_set_tx_bitrate_mask()
     - ethernet: tulip: fix missing pci_disable_device() on error in
       tulip_init_one()
     - [amd64,arm64] net: atlantic: fix "frag[0] not initialized"
     - [amd64,arm64] net: atlantic: reduce scope of is_rsc_complete
     - [amd64,arm64] net: atlantic: add check for MAX_SKB_FRAGS
     - [amd64,arm64] net: atlantic: verify hw_head_ lies within TX buffer ring
     - [arm64] Enable repeat tlbi workaround on KRYO4XX gold CPUs
     - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group
     - afs: Fix afs_getattr() to refetch file status if callback break occurred
     - include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.119
     - lockdown: also lock down previous kgdb use (CVE-2022-21499)
     - staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
     - [x86] KVM: x86: Properly handle APF vs disabled LAPIC situation
     - [x86] KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
       (CVE-2022-1789)
     - tcp: change source port randomizarion at connect() time
     - secure_seq: use the 64 bits of the siphash for port offset calculation
       (CVE-2022-1012)
     - ACPI: sysfs: Make sparse happy about address space in use
     - ACPI: sysfs: Fix BERT error region memory mapping
     - random: avoid arch_get_random_seed_long() when collecting IRQ randomness
     - random: remove dead code left over from blocking pool
     - MAINTAINERS: co-maintain random.c
     - MAINTAINERS: add git tree for random.c
     - crypto: lib/blake2s - Move selftest prototype into header file
     - crypto: blake2s - define shash_alg structs using macros
     - [amd64] crypto: x86/blake2s - define shash_alg structs using macros
     - crypto: blake2s - remove unneeded includes
     - crypto: blake2s - move update and final logic to internal/blake2s.h
     - crypto: blake2s - share the "shash" API boilerplate code
     - crypto: blake2s - optimize blake2s initialization
     - crypto: blake2s - add comment for blake2s_state fields
     - crypto: blake2s - adjust include guard naming
     - crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h>
     - lib/crypto: blake2s: include as built-in
     - lib/crypto: blake2s: move hmac construction into wireguard
     - lib/crypto: sha1: re-roll loops to reduce code size
     - lib/crypto: blake2s: avoid indirect calls to compression function for
       Clang CFI
     - random: document add_hwgenerator_randomness() with other input functions
     - random: remove unused irq_flags argument from add_interrupt_randomness()
     - random: use BLAKE2s instead of SHA1 in extraction
     - random: do not sign extend bytes for rotation when mixing
     - random: do not re-init if crng_reseed completes before primary init
     - random: mix bootloader randomness into pool
     - random: harmonize "crng init done" messages
     - random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs
     - random: early initialization of ChaCha constants
     - random: avoid superfluous call to RDRAND in CRNG extraction
     - random: don't reset crng_init_cnt on urandom_read()
     - random: fix typo in comments
     - random: cleanup poolinfo abstraction
     - random: cleanup integer types
     - random: remove incomplete last_data logic
     - random: remove unused extract_entropy() reserved argument
     - random: rather than entropy_store abstraction, use global
     - random: remove unused OUTPUT_POOL constants
     - random: de-duplicate INPUT_POOL constants
     - random: prepend remaining pool constants with POOL_
     - random: cleanup fractional entropy shift constants
     - random: access input_pool_data directly rather than through pointer
     - random: selectively clang-format where it makes sense
     - random: simplify arithmetic function flow in account()
     - random: continually use hwgenerator randomness
     - random: access primary_pool directly rather than through pointer
     - random: only call crng_finalize_init() for primary_crng
     - random: use computational hash for entropy extraction
     - random: simplify entropy debiting
     - random: use linear min-entropy accumulation crediting
     - random: always wake up entropy writers after extraction
     - random: make credit_entropy_bits() always safe
     - random: remove use_input_pool parameter from crng_reseed()
     - random: remove batched entropy locking
     - random: fix locking in crng_fast_load()
     - random: use RDSEED instead of RDRAND in entropy extraction
     - random: get rid of secondary crngs
     - random: inline leaves of rand_initialize()
     - random: ensure early RDSEED goes through mixer on init
     - random: do not xor RDRAND when writing into /dev/random
     - random: absorb fast pool into input pool after fast load
     - random: use simpler fast key erasure flow on per-cpu keys
     - random: use hash function for crng_slow_load()
     - random: make more consistent use of integer types
     - random: remove outdated INT_MAX >> 6 check in urandom_read()
     - random: zero buffer after reading entropy from userspace
     - random: fix locking for crng_init in crng_reseed()
     - random: tie batched entropy generation to base_crng generation
     - random: remove ifdef'd out interrupt bench
     - random: remove unused tracepoints
     - random: add proper SPDX header
     - random: deobfuscate irq u32/u64 contributions
     - random: introduce drain_entropy() helper to declutter crng_reseed()
     - random: remove useless header comment
     - random: remove whitespace and reorder includes
     - random: group initialization wait functions
     - random: group crng functions
     - random: group entropy extraction functions
     - random: group entropy collection functions
     - random: group userspace read/write functions
     - random: group sysctl functions
     - random: rewrite header introductory comment
     - random: defer fast pool mixing to worker
     - random: do not take pool spinlock at boot
     - random: unify early init crng load accounting
     - random: check for crng_init == 0 in add_device_randomness()
     - random: pull add_hwgenerator_randomness() declaration into random.h
     - random: clear fast pool, crng, and batches in cpuhp bring up
     - random: round-robin registers as ulong, not u32
     - random: only wake up writers after zap if threshold was passed
     - random: cleanup UUID handling
     - random: unify cycles_t and jiffies usage and types
     - random: do crng pre-init loading in worker rather than irq
     - random: give sysctl_random_min_urandom_seed a more sensible value
     - random: don't let 644 read-only sysctls be written to
     - random: replace custom notifier chain with standard one
     - random: use SipHash as interrupt entropy accumulator
     - random: make consistent usage of crng_ready()
     - random: reseed more often immediately after booting
     - random: check for signal and try earlier when generating entropy
     - random: skip fast_init if hwrng provides large chunk of entropy
     - random: treat bootloader trust toggle the same way as cpu trust toggle
     - random: re-add removed comment about get_random_{u32,u64} reseeding
     - random: mix build-time latent entropy into pool at init
     - random: do not split fast init input in add_hwgenerator_randomness()
     - random: do not allow user to keep crng key around on stack
     - random: check for signal_pending() outside of need_resched() check
     - random: check for signals every PAGE_SIZE chunk of /dev/[u]random
     - random: allow partial reads if later user copies fail
     - random: make random_get_entropy() return an unsigned long
     - random: document crng_fast_key_erasure() destination possibility
     - random: fix sysctl documentation nits
     - init: call time_init() before rand_initialize()
     - [s390x] define get_cycles macro for arch-override
     - [powerpc*] define get_cycles macro for arch-override
     - timekeeping: Add raw clock fallback for random_get_entropy()
     - [mips*] use fallback for random_get_entropy() instead of just c0 random
     - [arm*] use fallback for random_get_entropy() instead of zero
     - [x86] tsc: Use fallback for random_get_entropy() instead of zero
     - random: insist on random_get_entropy() existing in order to simplify
     - random: do not use batches when !crng_ready()
     - random: use first 128 bits of input as fast init
     - random: do not pretend to handle premature next security model
     - random: order timer entropy functions below interrupt functions
     - random: do not use input pool from hard IRQs
     - random: help compiler out with fast_mix() by using simpler arguments
     - siphash: use one source of truth for siphash permutations
     - random: use symbolic constants for crng_init states
     - random: avoid initializing twice in credit race
     - random: move initialization out of reseeding hot path
     - random: remove ratelimiting for in-kernel unseeded randomness
     - random: use proper jiffies comparison macro
     - random: handle latent entropy and command line from random_init()
     - random: credit architectural init the exact amount
     - random: use static branch for crng_ready()
     - random: remove extern from functions in header
     - random: use proper return types on get_random_{int,long}_wait()
     - random: make consistent use of buf and len
     - random: move initialization functions out of hot pages
     - random: move randomize_page() into mm where it belongs
     - random: unify batched entropy implementations
     - random: convert to using fops->read_iter()
     - random: convert to using fops->write_iter()
     - random: wire up fops->splice_{read,write}_iter()
     - random: check for signals after page of pool writes
     - ALSA: ctxfi: Add SB046x PCI ID
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.120
     - percpu_ref_init(): clean ->percpu_count_ref on failure
     - net: af_key: check encryption module availability consistency
     - nfc: pn533: Fix buggy cleanup order
     - [armhf] net: ftgmac100: Disable hardware checksum on AST2600
     - [x86] i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
     - [arm64] drivers: i2c: thunderx: Allow driver to work with ACPI defined
       TWSI controllers
     - netfilter: nf_tables: disallow non-stateful expression in sets earlier
       (CVE-2022-1966)
     - pipe: make poll_usage boolean and annotate its access
     - pipe: Fix missing lock in pipe_resize_ring() (ZDI-CAN-17291)
     - cfg80211: set custom regdomain after wiphy registration
     - assoc_array: Fix BUG_ON during garbage collect
     - io_uring: don't re-import iovecs from callbacks
     - io_uring: fix using under-expanded iters
     - xfs: detect overflows in bmbt records
     - xfs: show the proper user quota options
     - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
     - xfs: fix an ABBA deadlock in xfs_rename
     - xfs: Fix CIL throttle hang when CIL space used going backwards
     - exfat: check if cluster num is valid
     - crypto: drbg - prepare for more fine-grained tracking of seeding state
     - crypto: drbg - track whether DRBG was seeded with !rng_is_initialized()
     - crypto: drbg - move dynamic ->reseed_threshold adjustments to
       __drbg_seed()
     - crypto: drbg - make reseeding from get_random_bytes() synchronous
     - netfilter: nf_tables: sanitize nft_set_desc_concat_parse() (CVE-2022-1972)
     - netfilter: conntrack: re-fetch conntrack after insertion
     - [x86] kvm: Alloc dummy async #PF token outside of raw spinlock
     - [x86] kvm: use correct GFP flags for preemption disabled
     - [x86] KVM: x86: avoid calling x86 emulator without a decoded instruction
       (CVE-2022-1852)
     - [arm64] crypto: caam - fix i.MX6SX entropy delay value
     - crypto: ecrdsa - Fix incorrect use of vli_cmp
     - zsmalloc: fix races between asynchronous zspage free and page migration
     - Bluetooth: hci_qca: Use del_timer_sync() before freeing
     - dm integrity: fix error code in dm_integrity_ctr()
     - dm crypt: make printing of the key constant-time
     - dm stats: add cond_resched when looping over entries
     - dm verity: set DM_TARGET_IMMUTABLE feature flag
     - raid5: introduce MD_BROKEN
     - HID: multitouch: Add support for Google Whiskers Touchpad
     - HID: multitouch: add quirks to enable Lenovo X12 trackpoint
     - tpm: Fix buffer access in tpm2_get_tpm_pt()
     - docs: submitting-patches: Fix crossref to 'The canonical patch format'
     - NFS: Memory allocation failures are not server fatal errors
     - NFSD: Fix possible sleep during nfsd4_release_lockowner()
     - bpf: Fix potential array overflow in bpf_trampoline_get_progs()
     - bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.115-rt67
   * Bump ABI to 15
   * [rt] Drop "random: Make it work on rt"
 .
   [ Mateusz Łukasik ]
   * [armhf] drivers/thermal: Enable SUN8I_THERMAL as module (Closes: #1007799)
linux-signed-amd64 (5.10.120+1~bpo10+1) buster-backports; urgency=high
 .
   * Sign kernel from linux 5.10.120-1~bpo10+1
 .
   * Rebuild for buster-backports:
     - Change ABI number to 0.bpo.15
linux-signed-amd64 (5.10.113+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.113-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.107
     - Revert "xfrm: state and policy should fail if XFRMA_IF_ID 0"
       (Closes: #1008299)
     - xfrm: Check if_id in xfrm_migrate
     - xfrm: Fix xfrm migrate issues when address family changes
     - mac80211: refuse aggregations sessions before authorized
     - [mips64el,mipsel] smp: fill in sibling and core maps earlier
     - [x86] atm: firestream: check the return value of ioremap() in fs_init()
     - iwlwifi: don't advertise TWT support
     - drm/vrr: Set VRR capable prop only if it is attached to connector
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - sfc: extend the locking on mcdi->seqno
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.108
     - [arm64] crypto: qcom-rng - ensure buffer for generate is completely filled
     - ocfs2: fix crash when initialize filecheck kobj fails
     - mm: swap: get rid of livelock in swapin readahead
     - efi: fix return value of __setup handlers
     - vsock: each transport cycles only on its own sockets
     - esp6: fix check on ipv6_skip_exthdr's return value
     - net: phy: marvell: Fix invalid comparison in the resume and suspend
       functions
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - [x86] hv_netvsc: Add check for kvmalloc_array
     - [armhf] drm/imx: parallel-display: Remove bus flags check in
       imx_pd_bridge_atomic_check()
     - [arm64,armhf] drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - [arm64,armhf] net: dsa: Add missing of_node_put() in dsa_port_parse_of
     - net: phy: mscc: Add MODULE_FIRMWARE macros
     - bnx2x: fix built-in kernel driver load failure
     - [arm64] net: bcmgenet: skip invalid partial checksums
     - [arm64] net: mscc: ocelot: fix backwards compatibility with single-chain
       tc-flower offload
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - usb: usbtmc: Fix bug in pipe direction for control transfers
     - scsi: mpt3sas: Page fault in reply q processing
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: usb: Correct PHY handling of smsc95xx
     - net: usb: Correct reset handling of smsc95xx
     - smsc95xx: Ignore -ENODEV errors when device is unplugged
     - esp: Fix possible buffer overflow in ESP transformation (CVE-2022-27666)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.109
     - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
       (CVE-2022-26490)
     - net: ipv6: fix skb_over_panic in __ip6_append_data
     - exfat: avoid incorrectly releasing for root inode
     - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv
       (CVE-2021-4197)
     - cgroup: Use open-time cgroup namespace for process migration perm checks
       (CVE-2021-4197)
     - cgroup-v1: Correct privileges check in release_agent writes
     - tpm: Fix error handling in async work
     - llc: fix netdevice reference leaks in llc_ui_bind() (CVE-2022-28356)
     - ALSA: oss: Fix PCM OSS buffer allocation overflow
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
     - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
     - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
     - ALSA: hda/realtek: Add quirk for ASUS GA402
     - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent read/write and buffer changes
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prealloc proc writes (CVE-2022-1048)
     - ALSA: pcm: Add stream lock during PCM reset ioctl operations
     - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
     - ALSA: cmipci: Restore aux vol on suspend/resume
     - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
     - [arm64] drivers: net: xgene: Fix regression in CRC stripping
     - netfilter: nf_tables: initialize registers in nft_do_chain()
       (CVE-2022-1016)
     - [x86] ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
     - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
     - [x86] ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
     - [x86] crypto: qat - disable registration of algorithms
     - Revert "ath: add support for special 0x0 regulatory domain"
     - rcu: Don't deboost before reporting expedited quiescent state
     - mac80211: fix potential double free on mesh join
     - tpm: use try_get_ops() in tpm-space.c
     - [arm64] wcn36xx: Differentiate wcn3660 from wcn3620
     - llc: only change llc->dev when bind() succeeds
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.110
     - swiotlb: fix info leak with DMA_FROM_DEVICE (CVE-2022-0854)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - HID: logitech-dj: add new lightspeed receiver id
     - xfrm: fix tunnel model fragmentation behavior
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - gpio: Revert regression in sysfs-gpio (gpiolib.c)
     - spi: Fix invalid sgs value
     - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register (CVE-2022-1353)
     - [arm*] iommu/iova: Improve 32-bit free space estimate
     - tpm: fix reference counting for struct tpm_chip
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - xhci: fix garbage USBSTS being logged in some cases
     - xhci: fix runtime PM imbalance in USB2 resume
     - xhci: make xhci_handshake timeout for xhci_reset() adjustable
     - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
     - [x86] mei: me: add Alder Lake N device id.
     - [x86] mei: avoid iterator usage outside of list_for_each_entry
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
     - KEYS: fix length validation in keyctl_pkey_params_get_2()
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - firmware: stratix10-svc: add missing callback parameter on RSU
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - NFSD: prevent integer overflow on 32 bit systems
     - f2fs: fix to unlock page correctly in error path of is_alive()
     - f2fs: quota: fix loop condition at f2fs_quota_sync()
     - f2fs: fix to do sanity check on .cp_pack_total_block_count
     - [armhf] remoteproc: Fix count check in rproc_coredump_write()
     - [armhf] pinctrl: samsung: drop pin banks references on error paths
     - mtd: rawnand: protect access to rawnand devices while in suspend
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28390)
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mm: invalidate hwpoison page cache page in fault path
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - cifs: prevent bad output lengths in smb2_ioctl_query_info()
     - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
       (CVE-2022-0168)
     - [i386] ALSA: cs4236: fix an incorrect NULL check on list iterator
     - ALSA: hda: Avoid unsol event during RPM suspending
     - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
     - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
     - mm: madvise: skip unmapped vma holes passed to process_madvise
     - mm: madvise: return correct bytes advised with process_madvise
     - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
     - mm,hwpoison: unmap poisoned page before invalidation
     - dm integrity: set journal entry unused when shrinking device
     - drbd: fix potential silent data corruption
     - can: isotp: sanitize CAN ID checks in isotp_bind()
     - [powerpc*] kvm: Fix kvm_use_magic_page
     - udp: call udp_encap_enable for v6 sockets when enabling encap
     - [arm64] signal: nofpsimd: Do not allocate fp/simd context when not
       available
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - coredump: Also dump first pages of non-executable ELF libraries
     - ext4: fix ext4_fc_stats trace point
     - ext4: fix fs corruption when tring to remove a non-empty directory with IO
       error
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
       (CVE-2022-1198)
     - block: limit request dispatch loop duration
     - block: don't merge across cgroup boundaries if blkcg is enabled
     - drm/edid: check basic audio support on CEA extension block
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5250
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5420
     - [x86] mgag200 fix memmapsl configuration in GCTL6 register
     - carl9170: fix missing bit-wise or operator for tx_params
     - pstore: Don't use semaphores in always-atomic-context code
     - [x86] thermal: int340x: Increase bitmap size
     - exec: Force single empty string when argv is empty
     - crypto: rsa-pkcs1pad - only allow with rsa
     - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
     - crypto: rsa-pkcs1pad - restore signature length check
     - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
     - bcache: fixup multiple threads crash
     - DEC: Limit PMAX memory probing to R3k systems
     - brcmfmac: firmware: Allocate space for default boardrev in nvram
     - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
     - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
     - brcmfmac: pcie: Fix crashes due to early IRQs
     - [x86] drm/i915/opregion: check port number bounds for SWSCI display power
       state
     - [x86] drm/i915/gem: add missing boundary check in vm_access
     - PCI: pciehp: Clear cmd_busy bit in polling mode
     - [arm64] PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
     - [arm64] regulator: qcom_smd: fix for_each_child.cocci warnings
     - selinux: check return value of sel_make_avc_files
     - [arm64] hwrng: cavium - Check health status while reading random data
     - [arm64] hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
     - crypto: authenc - Fix sleep in atomic context in decrypt_tail
     - [x86] thermal: int340x: Check for NULL after calling kmemdup()
     - [arm64,armhf] spi: tegra114: Add missing IRQ check in tegra_spi_probe
     - [arm64] mm: avoid fixmap race condition when create pud mapping
     - audit: log AUDIT_TIME_* records only from rules
     - spi: pxa2xx-pci: Balance reference count for PCI DMA device
     - [armhf] hwmon: (pmbus) Add mutex to regulator ops
     - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
     - nvme: cleanup __nvme_check_ids
     - block: don't delete queue kobject before its children
     - PM: hibernate: fix __setup handler error handling
     - PM: suspend: fix return value of __setup handler
     - [arm64] crypto: sun8i-ce - call finalize with bh disabled
     - [arm64,armhf] crypto: amlogic - call finalize with bh disabled
     - [armhf] clocksource/drivers/timer-ti-dm: Fix regression from errata i940
       fix
     - [armhf] clocksource/drivers/exynos_mct: Refactor resources allocation
     - [armhf] clocksource/drivers/exynos_mct: Handle DTS with higher number of
       interrupts
     - clocksource/drivers/timer-of: Check return value of of_iomap in
       timer_of_base_init()
     - ACPI: APEI: fix return value of __setup handlers
     - [x86] crypto: ccp - ccp_dmaengine_unregister release dma channels
     - [arm*] amba: Make the remove callback return void
     - [armhf] hwmon: (pmbus) Add Vin unit off handling
     - [x86] clocksource: acpi_pm: fix return value of __setup handler
     - io_uring: terminate manual loop iterator loop correctly for non-vecs
     - watch_queue: Fix NULL dereference in error cleanup
     - watch_queue: Actually free the watch
     - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
     - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
     - sched/core: Export pelt_thermal_tp
     - rseq: Optimise rseq_get_rseq_cs() and clear_rseq_cs()
     - rseq: Remove broken uapi field layout on 32-bit little endian
     - perf/core: Fix address filter parser for multiple filters
     - [x86] perf/x86/intel/pt: Fix address filter config for 32-bit kernel
     - f2fs: fix missing free nid in f2fs_handle_failed_inode
     - nfsd: more robust allocation failure handling in nfsd_file_cache_init
     - f2fs: fix to avoid potential deadlock
     - btrfs: fix unexpected error path when reflinking an inline extent
     - f2fs: compress: remove unneeded read when rewrite whole cluster
     - f2fs: fix compressed file start atomic write may cause data corruption
     - [arm64,armhf] media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP
       buffers across ioctls
     - media: bttv: fix WARNING regression on tunerless devices
     - [arm*] ASoC: generic: simple-card-utils: remove useless assignment
     - [armhf] media: coda: Fix missing put_device() call in coda_get_vdoa_data
     - [armhf] media: aspeed: Correct value for h-total-pixels
     - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
       avoid black screen
     - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
     - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
     - [arm64] firmware: qcom: scm: Remove reassignment to desc following
       initializer
     - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is
       not defined
     - [armhf] dts: imx: Add missing LVDS decoder on M53Menlo
     - media: em28xx: initialize refcount before kref_get
     - media: usb: go7007: s2250-board: fix leak in probe()
     - [arm64,armhf] media: cedrus: H265: Fix neighbour info buffer size
     - [arm64,armhf] media: cedrus: h264: Fix neighbour info buffer size
     - [x86] ASoC: rt5663: check the return value of devm_kzalloc() in
       rt5663_parse_dp()
     - printk: fix return value of printk.devkmsg __setup handler
     - [x86] ASoC: soc-compress: prevent the potentially use of null pointer
     - [armhf] memory: emif: Add check for setup_interrupts
     - [armhf] memory: emif: check the pointer temp in get_device_details()
     - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
     - [arm64] dts: rockchip: Fix SDIO regulator supply properties on
       rk3399-firefly
     - media: stk1160: If start stream fails, return buffers with
       VB2_BUF_STATE_QUEUED
     - media: saa7134: convert list_for_each to entry variant
     - media: saa7134: fix incorrect use to determine if list is empty
     - ivtv: fix incorrect device_caps for ivtvfb
     - [arm64,armhf] ASoC: rockchip: i2s: Use
       devm_platform_get_and_ioremap_resource()
     - [arm64,armhf] ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
       rockchip_i2s_probe
     - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
     - [armhf] ASoC: fsl_spdif: Disable TX clock when stop
     - [armhf] ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
     - [arm64] drm/meson: osd_afbcd: Add an exit callback to struct
       meson_afbcd_ops
     - [arm64,armhf] drm/bridge: Add missing pm_runtime_disable() in
       __dw_mipi_dsi_probe
     - [arm64] drm: bridge: adv7511: Fix ADV7535 HPD enablement
     - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
     - [arm64,armhf] drm/panfrost: Check for error num after setting mask
     - Bluetooth: hci_serdev: call init_rwsem() before p->open()
     - [armhf] mtd: rawnand: gpmi: fix controller timings setting
     - drm/edid: Don't clear formats if using deep color
     - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
     - drm/amd/display: Fix a NULL pointer dereference in
       amdgpu_dm_connector_add_common_modes()
     - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
     - ath9k_htc: fix uninit value bugs
     - RDMA/core: Set MR type in ib_reg_user_mr
     - [powerpc*] KVM: PPC: Fix vmx/vsx mixup in mmio emulation
     - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
     - i40e: respect metadata on XSK Rx to skb
     - [x86] ray_cs: Check ioremap return value
     - [powerpc*] KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
     - [powerpc*] perf: Don't use perf_hw_context for trace IMC PMU
     - [arm64,armhf] net: dsa: mv88e6xxx: Enable port policy support on 6097
     - [arm64] PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated
       bridge
     - [arm64,armhf] drm/bridge: dw-hdmi: use safe format when first in bridge
       chain
     - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
     - drm/amd/pm: enable pm sysfs write for one VF mode
     - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
     - IB/cma: Allow XRC INI QPs to set their local ACK timeout
     - dax: make sure inodes are flushed before destroy cache
     - iwlwifi: Fix -EIO error code that is never returned
     - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
     - [arm64] drm/msm/dp: populate connector of struct dp_panel
     - [arm64] drm/msm/dpu: add DSPP blocks teardown
     - [arm64] drm/msm/dpu: fix dp audio condition
     - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
     - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
     - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
     - scsi: pm8001: Fix le32 values handling in
       pm80xx_set_sas_protocol_timer_config()
     - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
     - scsi: pm8001: Fix NCQ NON DATA command task initialization
     - scsi: pm8001: Fix NCQ NON DATA command completion handling
     - scsi: pm8001: Fix abort all task initialization
     - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
     - drm/amd/display: Remove vupdate_int_entry definition
     - TOMOYO: fix __setup handlers return values
     - [arm64,armhf] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
     - [x86] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong
       false return
     - [arm64] scsi: hisi_sas: Change permission of parameter prot_mask
     - [arm64] bpf, arm64: Call build_prologue() first in first JIT pass
     - [arm64] bpf, arm64: Feed byte-offset into bpf line info
     - [arm64,armhf] gpu: host1x: Fix a memory leak in 'host1x_remove()'
     - [powerpc*] mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
     - [x86] KVM: x86: Fix emulation in writing cr8
     - [x86] KVM: x86/emulator: Defer not-present segment check in
       __load_segment_descriptor()
     - [x86] hv_balloon: rate-limit "Unhandled message" warning
     - [amd64] IB/hfi1: Allow larger MTU without AIP
     - PCI: Reduce warnings on possible RW1C corruption
     - [armhf] mfd: mc13xxx: Add check for mc13xxx_irq_request
     - [x86] platform/x86: huawei-wmi: check the return value of
       device_create_file()
     - vxcan: enable local echo for sent CAN frames
     - ath10k: Fix error handling in ath10k_setup_msa_resources
     - [mips*] pgalloc: fix memory leak caused by pgd_free()
     - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
     - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
     - bpf, sockmap: Fix more uncharged while msg has more_data
     - bpf, sockmap: Fix double uncharge the mem of sk_msg
     - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
     - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
     - can: isotp: support MSG_TRUNC flag when reading from socket
     - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
     - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
     - af_netlink: Fix shift out of bounds in group mask calculation
     - [arm64,armhf] i2c: meson: Fix wrong speed use from probe
     - PCI: Avoid broken MSI on SB600 USB devices
     - [arm64] net: bcmgenet: Use stronger register read/writes to assure
       ordering
     - tcp: ensure PMTU updates are processed during fastopen
     - openvswitch: always update flow key after nat
     - tipc: fix the timer expires after interval 100ms
     - [x86] mxser: fix xmit_buf leak in activate when LSR == 0xff
     - [armhf] fsi: aspeed: convert to devm_platform_ioremap_resource
     - [armhf] fsi: Aspeed: Fix a potential double free
     - soundwire: intel: fix wrong register name in intel_shim_wake
     - iio: mma8452: Fix probe failing when an i2c_device_id is used
     - [arm64,armhf] phy: dphy: Correct lpx parameter and its
       derivatives(ta_{get,go,sure})
     - [x86] serial: 8250_mid: Balance reference count for PCI DMA device
     - [x86] serial: 8250_lpss: Balance reference count for PCI DMA device
     - NFS: Use of mapping_set_error() results in spurious errors
     - serial: 8250: Fix race condition in RTS-after-send handling
     - NFS: Return valid errors from nfs2/3_decode_dirent()
     - [arm64] clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
     - [arm64] clk: qcom: clk-rcg2: Update the frac table for pixel clock
     - nvdimm/region: Fix default alignment for small regions
     - [armhf] clk: tegra: tegra124-emc: Fix missing put_device() call in
       emc_ensure_emc_driver
     - NFS: remove unneeded check in decode_devicenotify_args()
     - [arm64,armhf] pinctrl/rockchip: Add missing of_node_put() in
       rockchip_pinctrl_probe
     - [s390x] tty: hvc: fix return value of __setup handler
     - serial: 8250: fix XOFF/XON sending when DMA is used
     - driver core: dd: fix return value of __setup handler
     - jfs: fix divide error in dbNextAG
     - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
     - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
     - kdb: Fix the putarea helper function
     - clk: Initialize orphan req_rate
     - [amd64] xen: fix is_xen_pmu()
     - [arm64] net: enetc: report software timestamping via SO_TIMESTAMPING
     - [arm64] net: hns3: fix bug when PF set the duplicate MAC address for VFs
     - net: phy: broadcom: Fix brcm_fet_config_init()
     - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
     - [armhf] net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list
       iterator
     - fs: fd tables have to be multiples of BITS_PER_LONG
     - fs: fix fd table size alignment properly
     - LSM: general protection fault in legacy_parse_param
     - block, bfq: don't move oom_bfqq
     - selinux: use correct type for context length
     - selinux: allow FIOCLEX and FIONCLEX with policy capability
     - loop: use sysfs_emit() in the sysfs xxx show()
     - Fix incorrect type in assignment of ipv6 port for audit
     - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
     - bfq: fix use-after-free in bfq_dispatch_request
     - ACPICA: Avoid walking the ACPI Namespace if it is not there
     - Revert "Revert "block, bfq: honor already-setup queue merges""
     - ACPI/APEI: Limit printable size of BERT table data
     - PM: core: keep irq flags in device_pm_check_callbacks()
     - nvme-tcp: lockdep: annotate in-kernel sockets
     - [arm64] spi: tegra20: Use of_device_get_match_data()
     - ext4: correct cluster len and clusters changed accounting in
       ext4_mb_mark_bb
     - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
     - ext4: don't BUG if someone dirty pages without asking ext4 first
     - f2fs: fix to do sanity check on curseg->alloc_type
     - NFSD: Fix nfsd_breaker_owns_lease() return values
     - f2fs: compress: fix to print raw data size in error path of lz4
       decompression
     - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
     - [armel,armhf] ftrace: avoid redundant loads or clobbering IP
     - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
     - ASoC: soc-core: skip zero num_dai component in searching dai name
     - media: cx88-mpeg: clear interrupt status register before streaming video
     - uaccess: fix type mismatch warnings from access_ok()
     - media: Revert "media: em28xx: add missing em28xx_close_extension"
     - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
     - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
     - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
     - [x86] KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP
       MMU
     - [powerpc*] lib/sstep: Fix 'sthcx' instruction
     - [powerpc*] lib/sstep: Fix build errors with newer binutils
     - scsi: qla2xxx: Fix stuck session in gpdb
     - scsi: qla2xxx: Fix scheduling while atomic
     - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
     - scsi: qla2xxx: Fix warning for missing error code
     - scsi: qla2xxx: Fix device reconnect in loop topology
     - scsi: qla2xxx: Add devids and conditionals for 28xx
     - scsi: qla2xxx: Check for firmware dump already collected
     - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
     - scsi: qla2xxx: Fix disk failure to rediscover
     - scsi: qla2xxx: Fix incorrect reporting of task management failure
     - scsi: qla2xxx: Fix hang due to session stuck
     - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
     - scsi: qla2xxx: Fix N2N inconsistent PLOGI
     - scsi: qla2xxx: Reduce false trigger to login
     - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
     - [arm64] platform: chrome: Split trace include file
     - [x86] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't
       activated
     - KVM: Prevent module exit until all VMs are freed
     - [x86] KVM: x86: fix sending PV IPI
     - [x86] KVM: SVM: fix panic on out-of-bounds guest IRQ
     - [x86] ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
     - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
     - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
     - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
     - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
     - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
     - ubifs: Fix to add refcount once page is set private
     - ubifs: rename_whiteout: correct old_dir size computing
     - wireguard: queueing: use CFI-safe ptr_ring cleanup function
     - wireguard: socket: free skb in send6 when ipv6 is disabled
     - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
     - XArray: Fix xas_create_range() when multi-order entry present
     - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error
       path (CVE-2022-28389)
     - can: mcba_usb: properly check endpoint type
     - XArray: Update the LRU list in xas_split()
     - rtc: check if __rtc_read_time was successful
     - gfs2: Make sure FITRIM minlen is rounded up to fs block size
     - [arm64] net: hns3: fix software vlan talbe of vlan 0 inconsistent with
       hardware
     - rxrpc: Fix call timer start racing with call destruction
     - [arm64] mailbox: imx: fix wakeup failure from freeze mode
     - watch_queue: Free the page array when watch_queue is dismantled
     - pinctrl: pinconf-generic: Print arguments for bias-pull-*
     - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
     - [arm*] iop32x: offset IRQ numbers by 1
     - io_uring: fix memory leak of uid in files registration
     - [amd64,arm64] ACPI: CPPC: Avoid out of bounds access when parsing _CPC
       data
     - [arm64] platform/chrome: cros_ec_typec: Check for EC device
     - can: isotp: restore accidentally removed MSG_PEEK feature
     - proc: bootconfig: Add null pointer check
     - [x86] ASoC: soc-compress: Change the check for codec_dai
     - batman-adv: Check ptr for NULL before reducing its refcnt
     - mm/mmap: return 1 from stack_guard_gap __setup() handler
     - mm/memcontrol: return 1 from cgroup.memory __setup() handler
     - mm/usercopy: return 1 from hardened_usercopy __setup() handler
     - bpf: Adjust BPF stack helper functions to accommodate skip > 0
     - bpf: Fix comment for helper bpf_current_task_under_cgroup()
     - dt-bindings: mtd: nand-controller: Fix the reg property description
     - dt-bindings: mtd: nand-controller: Fix a comment in the examples
     - dt-bindings: spi: mxic: The interrupt property is not mandatory
     - [x86] ASoC: topology: Allow TLV control to be either read or write
     - docs: sysctl/kernel: add missing bit to panic_print
     - openvswitch: Fixed nd target mask field in the flow dump.
     - [x86] KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
       (CVE-2022-1158)
     - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28388)
     - coredump: Snapshot the vmas in do_coredump
     - coredump: Remove the WARN_ON in dump_vma_snapshot
     - coredump/elf: Pass coredump_params into fill_note_info
     - coredump: Use the vma snapshot in fill_files_note
     - [arm64] Do not defer reserve_crashkernel() for platforms with no DMA
       memory zones
     - [arm64] PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.111
     - ubifs: Rectify space amount budget for mkdir/tmpfile operations
     - gfs2: Check for active reservation in gfs2_release
     - gfs2: Fix gfs2_release for non-writers regression
     - gfs2: gfs2_setattr_size error path fix
     - [x86] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
     - [x86] KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
     - drm: Add orientation quirk for GPD Win Max
     - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
     - drm/amd/display: Add signal type check when verify stream backends same
     - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
     - ptp: replace snprintf with sysfs_emit
     - [armhf] ath11k: fix kernel panic during unload/load ath11k modules
     - ath11k: mhi: use mhi_sync_power_up()
     - bpf: Make dst_port field in struct bpf_sock 16-bit wide
     - scsi: mvsas: Replace snprintf() with sysfs_emit()
     - scsi: bfa: Replace snprintf() with sysfs_emit()
     - [arm64,armhf] power: supply: axp20x_battery: properly report current when
       discharging
     - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
     - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
     - ipv6: make mc_forwarding atomic
     - [powerpc*] Set crashkernel offset to mid of RMA region
     - drm/amdgpu: Fix recursive locking warning
     - [arm64] PCI: aardvark: Fix support for MSI interrupts
     - [arm64] iommu/arm-smmu-v3: fix event handling soft lockup
     - usb: ehci: add pci device support for Aspeed platforms
     - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
     - iwlwifi: mvm: Correctly set fragmented EBS
     - ipv4: Invalidate neighbour for broadcast address upon address addition
     - dm ioctl: prevent potential spectre v1 gadget
     - dm: requeue IO if mapping table not yet available
     - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
     - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
     - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
     - scsi: pm8001: Fix tag leaks on error
     - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
     - scsi: aha152x: Fix aha152x_setup() __setup handler return value
     - [arm64] scsi: hisi_sas: Free irq vectors in order for v3 HW
     - net/smc: correct settings of RMB window update limit
     - macvtap: advertise link netns via netlink
     - tuntap: add sanity checks about msg_controllen in sendmsg
     - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
     - Bluetooth: use memset avoid memory leaks
     - bnxt_en: Eliminate unintended link toggle during FW reset
     - [mps64el,mipsel] fix fortify panic when copying asm exception handlers
     - scsi: libfc: Fix use after free in fc_exch_abts_resp()
     - can: isotp: set default value for N_As to 50 micro seconds
     - net: account alternate interface name memory
     - net: limit altnames to 64k total
     - net: sfp: add 2500base-X quirk for Lantech SFP module
     - [armhf] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on
       omap5evm
     - Bluetooth: Fix use after free in hci_send_acl
     - netlabel: fix out-of-bounds memory accesses
     - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
     - init/main.c: return 1 from handled __setup() functions
     - minix: fix bug when opening a file with O_DIRECT
     - [arm*] staging: vchiq_core: handle NULL result of find_service_by_handle
     - [arm64,armhf] phy: amlogic: meson8b-usb2: Use dev_err_probe()
     - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
     - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
     - NFSv4: Protect the state recovery thread against direct reclaim
     - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
     - [armhf] clk: ti: Preserve node in ti_dt_clocks_register()
     - clk: Enforce that disjoints limits are invalid
     - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
     - SUNRPC/xprt: async tasks mustn't block waiting for memory
     - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
     - NFS: swap IO handling is slightly different for O_DIRECT IO
     - NFS: swap-out must always use STABLE writes.
     - [armhf] serial: samsung_tty: do not unlock port->lock for
       uart_write_wakeup()
     - virtio_console: eliminate anonymous module_init & module_exit
     - jfs: prevent NULL deref in diFree
     - SUNRPC: Fix socket waits for write buffer space
     - NFS: nfsiod should not block forever in mempool_alloc()
     - NFS: Avoid writeback threads getting stuck in mempool_alloc()
     - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
     - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
     - [x86] Drivers: hv: vmbus: Fix potential crash on module unload
     - Revert "NFSv4: Handle the special Linux file open access mode"
     - NFSv4: fix open failure with O_ACCMODE flag
     - ice: Clear default forwarding VSI during VSI release
     - net: ipv4: fix route with nexthop object delete warning
     - net: stmmac: Fix unset max_speed difference between DT and non-DT
       platforms
     - [armhf] drm/imx: imx-ldb: Check for null pointer after calling kmemdup
     - [armhf] drm/imx: Fix memory leak in imx_pd_connector_get_modes
     - sfc: Do not free an empty page_ring
     - RDMA/mlx5: Don't remove cache MRs when a delay is needed
     - [amd64] IB/rdmavt: add lock to call to rvt_error_qp to prevent a race
       condition
     - [arm64] dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
     - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
     - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
     - ipv6: Fix stats accounting in ip6_pkt_drop
     - ice: synchronize_rcu() when terminating rings
     - net: openvswitch: don't send internal clone attribute to the userspace.
     - net: openvswitch: fix leak of nested actions
     - rxrpc: fix a race in rxrpc_exit_net()
     - qede: confirm skb is allocated before using
     - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
     - drbd: Fix five use after free bugs in get_initial_state
     - io_uring: don't touch scm_fp_list after queueing skb
     - SUNRPC: Handle ENOMEM in call_transmit_status()
     - SUNRPC: Handle low memory situations in call_status()
     - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
     - [armhf] iommu/omap: Fix regression in probe for NULL pointer dereference
     - [arm64] Add part number for Arm Cortex-A78AE
     - [arm64] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
     - [arm64,armhf] mmc: mmci: stm32: correctly check all elements of sg list
     - lz4: fix LZ4_decompress_safe_partial read out of bound
     - mmmremap.c: avoid pointless invalidate_range_start/end on
       mremap(old_size=0)
     - mm/mempolicy: fix mpol_new leak in shared_policy_replace
     - io_uring: fix race between timeout flush and removal (CVE-2022-29582)
     - [x86] pm: Save the MSR validity status at context setup
     - [x86] speculation: Restore speculation related MSRs during S3 resume
     - btrfs: fix qgroup reserve overflow the qgroup limit
     - btrfs: prevent subvol with swapfile from being deleted
     - [arm64] patch_text: Fixup last cpu should be master
     - [amd64] RDMA/hfi1: Fix use-after-free bug for mm struct
     - gpio: Restrict usage of GPIO chip irq members before initialization
     - [arm64] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
     - [arm64,armhf] irqchip/gic-v3: Fix GICR_CTLR.RWP polling
     - drm/nouveau/pmu: Add missing callbacks for Tegra devices
     - mm: don't skip swap entry even if zap_details specified
     - cgroup: Use open-time credentials for process migraton perm checks
       (CVE-2021-4197)
     - [x86] Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
     - [arm64,armhf] irqchip/gic, gic-v3: Prevent GSI to SGI translations
     - [powerpc*] Fix virt_addr_valid() for 64-bit Book3E & 32-bit
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.112
     - [amd64] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
     - hamradio: defer 6pack kfree after unregister_netdev (CVE-2022-1195)
     - hamradio: remove needs_free_netdev to avoid UAF (CVE-2022-1195)
     - [arm64] cpuidle: PSCI: Move the `has_lpi` check to the beginning of the
       function
     - ACPI: processor idle: Check for architectural support for LPI
     - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
     - [arm64] drm/msm: Add missing put_task_struct() in debugfs path
     - SUNRPC: Fix the svc_deferred_event trace class
     - net/sched: flower: fix parsing of ethertype following VLAN header
     - veth: Ensure eth header is in skb's linear part
     - gpiolib: acpi: use correct format characters
     - net: mdio: Alphabetically sort header inclusion
     - net/sched: fix initialization order when updating chain 0 head
     - [arm64] net: dsa: felix: suppress -EPROBE_DEFER errors
     - [armhf] net: ethernet: stmmac: fix altr_tse_pcs function when using a
       fixed-link
     - net/sched: taprio: Check if socket flags are valid
     - cfg80211: hold bss_lock while updating nontrans_list
     - [arm64] drm/msm: Fix range size vs end confusion
     - [arm64] drm/msm/dsi: Use connector directly in
       msm_dsi_manager_connector_init()
     - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
     - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
     - scsi: pm80xx: Enable upper inbound, outbound queues
     - scsi: iscsi: Stop queueing during ep_disconnect
     - scsi: iscsi: Force immediate failure during shutdown
     - scsi: iscsi: Use system_unbound_wq for destroy_work
     - scsi: iscsi: Rel ref after iscsi_lookup_endpoint()
     - scsi: iscsi: Fix in-kernel conn failure handling
     - scsi: iscsi: Move iscsi_ep_disconnect()
     - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
     - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
     - sctp: Initialize daddr on peeled off socket
     - cifs: potential buffer overflow in handling symlinks
     - [arm64] net: bcmgenet: Revert "Use stronger register read/writes to assure
       ordering"
     - drm/amd: Add USBC connector ID
     - btrfs: fix fallocate to use file_modified to update permissions
       consistently
     - btrfs: do not warn for free space inode in cow_file_range
     - drm/amd/display: fix audio format not updated after edid updated
     - drm/amd/display: FEC check in timing validation
     - drm/amd/display: Update VTEM Infopacket definition
     - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
     - drm/amdgpu/vcn: improve vcn dpg stop procedure
     - [x86] Drivers: hv: vmbus: Prevent load re-ordering when reading ring
       buffer
     - scsi: target: tcmu: Fix possible page UAF
     - scsi: lpfc: Fix queue failures when recovering from PCI parity error
     - [powerpc*] scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
     - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
     - [armhf] gpu: ipu-v3: Fix dev_dbg frequency output
     - [arm64] alternatives: mark patch_alternative() as `noinstr`
     - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
     - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
     - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
     - drm/amd/display: Revert FEC check in validation
     - drm/amd/display: Fix allocate_mst_payload assert on resume
     - scsi: mvsas: Add PCI ID of RocketRaid 2640
     - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
     - drivers: net: slip: fix NPD bug in sl_tx_timeout()
     - mm, page_alloc: fix build_zonerefs_node()
     - mm: fix unexpected zeroed page mapping with zram swap
     - [x86] KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
     - ath9k: Properly clear TX status area before reporting to mac80211
     - ath9k: Fix usage of driver-private space in tx_info
     - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
     - btrfs: mark resumed async balance as writing
     - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
     - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
     - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
     - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
     - ipv6: fix panic when forwarding a pkt with no in6 dev
     - drm/amd/display: don't ignore alpha property on pre-multiplied mode
     - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
     - genirq/affinity: Consider that CPUs on nodes can be unbalanced
     - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
     - dm integrity: fix memory corruption when tag_size is less than digest size
     - smp: Fix offline cpu check in flush_smp_call_function_queue()
     - timers: Fix warning condition in __run_timers()
     - dma-direct: avoid redundant memory sync for swiotlb
     - scsi: iscsi: Fix endpoint reuse regression
     - scsi: iscsi: Fix unbound endpoint error handling
     - ax25: add refcount in ax25_dev to avoid UAF bugs (CVE-2022-1204)
     - ax25: fix reference count leaks of ax25_dev (CVE-2022-1204)
     - ax25: fix UAF bugs of net_device caused by rebinding operation
       (CVE-2022-1204)
     - ax25: Fix refcount leaks caused by ax25_cb_del() (CVE-2022-1204)
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect (CVE-2022-1199)
     - ax25: Fix NULL pointer dereferences in ax25 timers (CVE-2022-1205)
     - ax25: Fix UAF bugs in ax25 timers (CVE-2022-1205)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.113
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNP
     - dm: fix mempool NULL pointer race when completing IO
     - [armhf] dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - esp: limit skb_page_frag_refill use to a single page
     - igc: Fix infinite loop in release_swfw_sync
     - igc: Fix BUG: scheduling while atomic
     - rxrpc: Restore removed timer deletion
     - net/smc: Fix sock leak when release after smc_shutdown()
     - net/packet: fix packet_sock xmit return value checking
     - ip6_gre: Avoid updating tunnel->tun_hlen in __gre6_xmit()
     - ip6_gre: Fix skb_under_panic in __gre6_xmit()
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using
       netdev_master_upper_dev_get_rcu
     - ipv6: make ip6_rt_gc_expire an atomic_t
     - netlink: reset network and mac headers in netlink_dump()
     - net: stmmac: Use readl_poll_timeout_atomic() in atomic state
     - [arm64] mm: Remove [PUD|PMD]_TABLE_BIT from [pud|pmd]_bad()
     - [arm64] mm: fix p?d_leaf()
     - [x86] platform/x86: samsung-laptop: Fix an unsigned comparison which can
       never be negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - [amd64,arm64] net: atlantic: Avoid out-of-bounds indexing
     - mt76: Fix undefined behavior due to shift overflowing the constant
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
       constant
     - [arm64] drm/msm/mdp5: check the return of kzalloc()
     - [arm64] net: macb: Restart tx only if queue pointer is lagging
     - scsi: qedi: Fix failed disconnect handling
     - stat: fix inconsistency between struct stat and struct compat_stat
     - nvme: add a quirk to disable namespace identifiers
     - nvme-pci: disable namespace identifiers for Qemu controllers
     - mm, hugetlb: allow for "high" userspace addresses
     - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex
       cleanup
     - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - [amd64,arm64] net: atlantic: invert deep par in pm functions, preventing
       null derefs
     - openvswitch: fix OOB access in reserve_sfa_size()
     - gpio: Request interrupts after IRQ is initialized
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - [arm*] arm_pmu: Validate single/group leader events
     - sched/pelt: Fix attach_entity_load_avg() corner case
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not
       initialised
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Initialise the bridge in
       prepare
     - [powerpc*] KVM: PPC: Fix TCE handling for VFIO
     - [arm*] drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync()
       usage
     - [powerpc*] perf: Fix power9 event alternatives
     - ext4: fix fallocate to use file_modified to update permissions
       consistently
     - ext4: fix symlink file size not match to file content
     - ext4: fix use-after-free in ext4_search_dir
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
     - ext4, doc: fix incorrect h_reserved size
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - can: isotp: stop timeout monitoring when no first frame was sent
     - jbd2: fix a potential race while discarding reserved buffers after an
       abort
     - block/compat_ioctl: fix range check in BLKGETSIZE
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 14
   * [rt] Drop "tcp: Remove superfluous BH-disable around"
   * [rt] Update "tracing: Merge irqflags + preempt counter." for upstream
     changes in 5.10.113
   * [x86] pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
     (Closes: #1006346)
   * floppy: disable FDRAWCMD by default

linux-signed-arm64 (5.10.127+1) bullseye; urgency=medium
 .
   * Sign kernel from linux 5.10.127-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.121
     - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop
     - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
     - ALSA: usb-audio: Cancel pending work at closing a MIDI substream
     - USB: serial: option: add Quectel BG95 modem
     - USB: new quirk for Dell Gen 2 devices
     - usb: dwc3: gadget: Move null pinter check to proper place
     - usb: core: hcd: Add support for deferring roothub registration
     - cifs: when extending a file with falloc we should make files not-sparse
     - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI
     - Fonts: Make font size unsigned in font_desc
     - [x86] MCE/AMD: Fix memory leak when threshold_create_bank() fails
     - [w86] perf/x86/intel: Fix event constraints for ICL
     - ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
     - ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
     - btrfs: add "0x" prefix for unsupported optional features
     - btrfs: repair super block num_devices automatically
     - [amd64] iommu/vt-d: Add RPLS to quirk list to skip TE disabling
     - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
     - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
     - b43legacy: Fix assigning negative value to unsigned variable
     - b43: Fix assigning negative value to unsigned variable
     - ipw2x00: Fix potential NULL dereference in libipw_xmit()
     - ipv6: fix locking issues with loops over idev->addr_list
     - fbcon: Consistently protect deferred_takeover with console_lock()
     - [x86] platform/uv: Update TSC sync state for UV5
     - ACPICA: Avoid cache flush inside virtual machines
     - drm/komeda: return early if drm_universal_plane_init() fails.
     - rcu-tasks: Fix race in schedule and flush work
     - rcu: Make TASKS_RUDE_RCU select IRQ_WORK
     - sfc: ef10: Fix assigning negative value to unsigned variable
     - ALSA: jack: Access input_dev under mutex
     - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA
       direction
     - drm/amd/pm: fix double free in si_parse_power_table()
     - ath9k: fix QCA9561 PA bias level
     - media: venus: hfi: avoid null dereference in deinit
     - media: pci: cx23885: Fix the error handling in cx23885_initdev()
     - media: cx25821: Fix the warning when removing the module
     - md/bitmap: don't set sb values if can't pass sanity check
     - mmc: jz4740: Apply DMA engine limits to maximum segment size
     - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit
     - scsi: megaraid: Fix error check return value of register_chrdev()
     - scsi: ufs: Use pm_runtime_resume_and_get() instead of
       pm_runtime_get_sync()
     - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp()
     - ath11k: disable spectral scan during spectral deinit
     - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408
     - drm/plane: Move range check for format_count earlier
     - drm/amd/pm: fix the compile warning
     - ath10k: skip ath10k_halt during suspend for driver state RESTARTING
     - [arm64] compat: Do not treat syscall number as ESR_ELx for a bad syscall
     - drm: msm: fix error check return value of irq_of_parse_and_map()
     - ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
     - net/mlx5: fs, delete the FTE when there are no rules attached to it
     - ASoC: dapm: Don't fold register value changes into notifications
     - mlxsw: spectrum_dcb: Do not warn about priority changes
     - mlxsw: Treat LLDP packets as control
     - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo
     - HID: bigben: fix slab-out-of-bounds Write in bigben_probe
     - ASoC: tscs454: Add endianness flag in snd_soc_component_driver
     - net: remove two BUG() from skb_checksum_help()
     - [s390x] preempt: disable __preempt_count_add() optimization for
       PROFILE_ALL_BRANCHES
     - perf/amd/ibs: Cascade pmu init functions' return value
     - spi: stm32-qspi: Fix wait_cmd timeout in APM mode
     - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
     - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default
     - ipmi:ssif: Check for NULL msg when handling events and messages
     - ipmi: Fix pr_fmt to avoid compilation issues
     - rtlwifi: Use pr_warn instead of WARN_ONCE
     - media: rga: fix possible memory leak in rga_probe
     - media: coda: limit frame interval enumeration to supported encoder frame
       sizes
     - media: imon: reorganize serialization
     - media: cec-adap.c: fix is_configuring state
     - nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
     - ASoC: rt5645: Fix errorenous cleanup order
     - nbd: Fix hung on disconnect request if socket is closed before
     - net: phy: micrel: Allow probing without .driver_data
     - media: exynos4-is: Fix compile warning
     - ASoC: max98357a: remove dependency on GPIOLIB
     - ASoC: rt1015p: remove dependency on GPIOLIB
     - can: mcp251xfd: silence clang's -Wunaligned-access warning
     - [x86] microcode: Add explicit CPU vendor dependency
     - rxrpc: Return an error to sendmsg if call failed
     - rxrpc, afs: Fix selection of abort codes
     - eth: tg3: silence the GCC 12 array-bounds warning
     - gfs2: use i_lock spin_lock for inode qadata
     - IB/rdmavt: add missing locks in rvt_ruc_loopback
     - [arm64] dts: qcom: msm8994: Fix BLSP[12]_DMA channels count
     - PM / devfreq: rk3399_dmc: Disable edev on remove()
     - crypto: ccree - use fine grained DMA mapping dir
     - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc
     - fs: jfs: fix possible NULL pointer dereference in dbFree()
     - [powerpc*] fadump: Fix fadump to work with a different endian capture
       kernel
     - fat: add ratelimit to fat*_ent_bread()
     - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - ARM: versatile: Add missing of_node_put in dcscb_init
     - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
     - ARM: hisi: Add missing of_node_put after of_find_compatible_node
     - PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
     - tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
     - [powerpc*] powernv/vas: Assign real address to rx_fifo in vas_rx_win_attr
     - [powerpc*] xics: fix refcount leak in icp_opal_init()
     - [powerpc*] powernv: fix missing of_node_put in uv_init()
     - macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
     - [powerpc*] iommu: Add missing of_node_put in iommu_init_early_dart
     - [amd64] RDMA/hfi1: Prevent panic when SDMA is disabled
     - drm: fix EDID struct for old ARM OABI format
     - dt-bindings: display: sitronix, st7735r: Fix backlight in example
     - ath11k: acquire ab->base_lock in unassign when finding the peer by addr
     - ath9k: fix ar9003_get_eepmisc
     - drm/edid: fix invalid EDID extension block filtering
     - drm/bridge: adv7511: clean up CEC adapter when probe fails
     - spi: qcom-qspi: Add minItems to interconnect-names
     - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
     - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
     - [x86] delay: Fix the wrong asm constraint in delay_loop()
     - drm/ingenic: Reset pixclock rate when parent clock rate changes
     - drm/mediatek: Fix mtk_cec_mask()
     - [arm*] drm/vc4: hvs: Reset muxes at probe time
     - [arm*] drm/vc4: txp: Don't set TXP_VSTART_AT_EOF
     - [arm*] drm/vc4: txp: Force alpha to be 0xff if it's disabled
     - bpf: Fix excessive memory allocation in stack_map_alloc()
     - nl80211: show SSID for P2P_GO interfaces
     - drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
     - drm: mali-dp: potential dereference of null pointer
     - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
     - scftorture: Fix distribution of short handler delays
     - net: dsa: mt7530: 1G can also support 1000BASE-X link mode
     - NFC: NULL out the dev->rfkill to prevent UAF
     - efi: Add missing prototype for efi_capsule_setup_info
     - target: remove an incorrect unmap zeroes data deduction
     - drbd: fix duplicate array initializer
     - EDAC/dmc520: Don't print an error for each unconfigured interrupt line
     - mtd: rawnand: denali: Use managed device resources
     - HID: hid-led: fix maximum brightness for Dream Cheeky
     - HID: elan: Fix potential double free in elan_input_configured
     - drm/bridge: Fix error handling in analogix_dp_probe
     - sched/fair: Fix cfs_rq_clock_pelt() for throttled cfs_rq
     - spi: img-spfi: Fix pm_runtime_get_sync() error checking
     - cpufreq: Fix possible race in cpufreq online error path
     - ath9k_htc: fix potential out of bounds access with invalid
       rxstatus->rs_keyix
     - media: hantro: Empty encoder capture buffers by default
     - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01
     - ALSA: pcm: Check for null pointer of pointer substream before
       dereferencing it
     - inotify: show inotify mask flags in proc fdinfo
     - fsnotify: fix wrong lockdep annotations
     - of: overlay: do not break notify on NOTIFY_{OK|STOP}
     - drm/msm/dpu: adjust display_v_end for eDP and DP
     - scsi: ufs: qcom: Fix ufs_qcom_resume()
     - scsi: ufs: core: Exclude UECxx from SFR dump list
     - mtd: spi-nor: core: Check written SR value in
       spi_nor_write_16bit_sr_and_check()
     - [x86] pm: Fix false positive kmemleak report in msr_build_context()
     - mtd: rawnand: cadence: fix possible null-ptr-deref in
       cadence_nand_dt_probe()
     - [x86] speculation: Add missing prototype for unpriv_ebpf_notify()
     - ASoC: rk3328: fix disabling mclk on pclk probe failure
     - perf tools: Add missing headers needed by util/data.h
     - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory
       free during pm runtime resume
     - drm/msm/dp: stop event kernel thread when DP unbind
     - drm/msm/dp: fix error check return value of irq_of_parse_and_map()
     - drm/msm/dsi: fix error checks and return values for DSI xmit functions
     - drm/msm/hdmi: check return value after calling
       platform_get_resource_byname()
     - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
     - drm/msm: add missing include to msm_drv.c
     - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H
     - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
     - perf tools: Use Python devtools for version autodetection rather than
       runtime
     - virtio_blk: fix the discard_granularity and discard_alignment queue limits
     - [x86] Fix return value of __setup handlers
     - irqchip/exiu: Fix acknowledgment of edge triggered interrupts
     - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
     - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value
     - [x86] mm: Cleanup the control_va_addr_alignment() __setup handler
     - [arm64] fix types in copy_highpage()
     - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET
     - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop()
     - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is
       detected
     - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is
       detected
     - drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
     - media: uvcvideo: Fix missing check to determine if element is found in
       list
     - iomap: iomap_write_failed fix
     - spi: spi-fsl-qspi: check return value after calling
       platform_get_resource_byname()
     - Revert "cpufreq: Fix possible race in cpufreq online error path"
     - regulator: qcom_smd: Fix up PM8950 regulator configuration
     - perf/amd/ibs: Use interrupt regs ip for stack unwinding
     - ath11k: Don't check arvif->is_started before sending management frames
     - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe
     - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
     - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
     - ASoC: samsung: Use dev_err_probe() helper
     - ASoC: samsung: Fix refcount leak in aries_audio_probe
     - scripts/faddr2line: Fix overlapping text section failures
     - media: aspeed: Fix an error handling path in aspeed_video_probe()
     - media: exynos4-is: Fix PM disable depth imbalance in fimc_is_probe
     - media: st-delta: Fix PM disable depth imbalance in delta_probe
     - media: exynos4-is: Change clk_disable to clk_disable_unprepare
     - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
     - media: vsp1: Fix offset calculation for plane cropping
     - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
     - Bluetooth: Interleave with allowlist scan
     - Bluetooth: L2CAP: Rudimentary typo fixes
     - Bluetooth: LL privacy allow RPA
     - Bluetooth: use inclusive language in HCI role comments
     - Bluetooth: use inclusive language when filtering devices
     - Bluetooth: use hdev lock for accept_list and reject_list in conn req
     - nvme: set dma alignment to dword
     - lsm,selinux: pass flowi_common instead of flowi to the LSM hooks
     - sctp: read sk->sk_bound_dev_if once in sctp_rcv()
     - net: hinic: add missing destroy_workqueue in hinic_pf_to_mgmt_init
     - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*
     - media: ov7670: remove ov7670_power_off from ov7670_remove
     - media: staging: media: rkvdec: Make use of the helper function
       devm_platform_ioremap_resource()
     - media: rkvdec: h264: Fix dpb_valid implementation
     - media: rkvdec: h264: Fix bit depth wrap in pps packet
     - ext4: reject the 'commit' option on ext2 filesystems
     - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init
     - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set()
     - [x86] sev: Annotate stack change in the #VC handler
     - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path
     - [x86] drm/i915: Fix CFI violation with show_dynamic_id()
     - thermal/drivers/bcm2711: Don't clamp temperature at zero
     - thermal/drivers/broadcom: Fix potential NULL dereference in
       sr_thermal_probe
     - thermal/drivers/core: Use a char pointer for the cooling device name
     - thermal/core: Fix memory leak in __thermal_cooling_device_register()
     - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe
     - ASoC: wm2000: fix missing clk_disable_unprepare() on error in
       wm2000_anc_transition()
     - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
     - ASoC: max98090: Move check for invalid values before casting in
       max98090_put_enab_tlv()
     - net: stmmac: selftests: Use kcalloc() instead of kzalloc()
     - net: stmmac: fix out-of-bounds access in a selftest
     - hv_netvsc: Fix potential dereference of NULL pointer
     - rxrpc: Fix listen() setting the bar too high for the prealloc rings
     - rxrpc: Don't try to resend the request if we're receiving the reply
     - rxrpc: Fix overlapping ACK accounting
     - rxrpc: Don't let ack.previousPacket regress
     - rxrpc: Fix decision on when to generate an IDLE ACK
     - net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc()
     - hinic: Avoid some over memory allocation
     - net/smc: postpone sk_refcnt increment in connect()
     - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399
     - memory: samsung: exynos5422-dmc: Avoid some over memory allocation
     - ARM: dts: suniv: F1C100: fix watchdog compatible
     - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
     - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
     - PCI: cadence: Fix find_first_zero_bit() limit
     - PCI: rockchip: Fix find_first_zero_bit() limit
     - PCI: dwc: Fix setting error return on MSI DMA mapping failure
     - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks
     - soc: qcom: llcc: Add MODULE_DEVICE_TABLE()
     - [x86] KVM: nVMX: Leave most VM-Exit info fields unmodified on failed
       VM-Entry
     - [x86] KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple
       fault
     - platform/chrome: cros_ec: fix error handling in cros_ec_register()
     - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing
     - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls
     - can: xilinx_can: mark bit timing constants as const
     - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96
     - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
     - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C
     - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED
     - ARM: dts: bcm2835-rpi-b: Fix GPIO line names
     - misc: ocxl: fix possible double free in ocxl_file_register_afu
     - crypto: marvell/cesa - ECB does not IV
     - gpiolib: of: Introduce hook for missing gpio-ranges
     - pinctrl: bcm2835: implement hook for missing gpio-ranges
     - arm: mediatek: select arch timer for mt7629
     - powerpc/fadump: fix PT_LOAD segment for boot memory area
     - mfd: ipaq-micro: Fix error check return value of platform_get_irq()
     - scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
     - firmware: arm_scmi: Fix list protocols enumeration in the base protocol
     - nvdimm: Fix firmware activation deadlock scenarios
     - nvdimm: Allow overwrite in the presence of disabled dimms
     - pinctrl: mvebu: Fix irq_of_parse_and_map() return value
     - drivers/base/node.c: fix compaction sysfs file leak
     - dax: fix cache flush on PMD-mapped pages
     - drivers/base/memory: fix an unlikely reference counting issue in
       __add_memory_block()
     - powerpc/8xx: export 'cpm_setbrg' for modules
     - pinctrl: renesas: core: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - powerpc/idle: Fix return value of __setup() handler
     - powerpc/4xx/cpm: Fix return value of __setup() handler
     - ASoC: atmel-pdmic: Remove endianness flag on pdmic component
     - ASoC: atmel-classd: Remove endianness flag on class d component
     - proc: fix dentry/inode overinstantiating under /proc/${pid}/net
     - ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
     - PCI: imx6: Fix PERST# start-up sequence
     - tty: fix deadlock caused by calling printk() under tty_port->lock
     - crypto: sun8i-ss - rework handling of IV
     - crypto: sun8i-ss - handle zero sized sg
     - crypto: cryptd - Protect per-CPU resource by disabling BH.
     - Input: sparcspkr - fix refcount leak in bbc_beep_probe
     - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits
     - hwrng: omap3-rom - fix using wrong clk_disable() in
       omap_rom_rng_runtime_resume()
     - [powerpc*] 64: Only WARN if __pa()/__va() called with bad addresses
     - [powerpc*] perf: Fix the threshold compare group constraint for power9
     - macintosh: via-pmu and via-cuda need RTC_LIB
     - powerpc/fsl_rio: Fix refcount leak in fsl_rio_setup
     - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()
     - mailbox: forward the hrtimer if not queued and under a lock
     - [amd64] RDMA/hfi1: Prevent use of lock before it is initialized
     - Input: stmfts - do not leave device disabled in stmfts_input_open
     - OPP: call of_node_put() on error path in _bandwidth_supported()
     - f2fs: fix dereference of stale list iterator after loop body
     - iommu/mediatek: Add list_del in mtk_iommu_remove
     - i2c: at91: use dma safe buffers
     - cpufreq: mediatek: add missing platform_driver_unregister() on error in
       mtk_cpufreq_driver_init
     - cpufreq: mediatek: Use module_init and add module_exit
     - cpufreq: mediatek: Unregister platform device on exit
     - [mips*] Loongson: Use hwmon_device_register_with_groups() to register
       hwmon
     - i2c: at91: Initialize dma_buf in at91_twi_xfer()
     - dmaengine: idxd: Fix the error handling path in idxd_cdev_register()
     - NFS: Do not report EINTR/ERESTARTSYS as mapping errors
     - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS
     - NFS: Do not report flush errors in nfs_write_end()
     - NFS: Don't report errors from nfs_pageio_complete() more than once
     - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout
     - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
     - dmaengine: stm32-mdma: remove GISR1 register
     - dmaengine: stm32-mdma: rework interrupt handler
     - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler()
     - iommu/amd: Increase timeout waiting for GA log enablement
     - i2c: npcm: Fix timeout calculation
     - i2c: npcm: Correct register access width
     - i2c: npcm: Handle spurious interrupts
     - i2c: rcar: fix PM ref counts in probe error paths
     - perf c2c: Use stdio interface if slang is not supported
     - perf jevents: Fix event syntax error caused by ExtSel
     - f2fs: fix to avoid f2fs_bug_on() in dec_valid_node_count()
     - f2fs: fix to do sanity check on block address in f2fs_do_zero_range()
     - f2fs: fix to clear dirty inode in f2fs_evict_inode()
     - f2fs: fix deadloop in foreground GC
     - f2fs: don't need inode lock for system hidden quota
     - f2fs: fix to do sanity check on total_data_blocks
     - f2fs: fix fallocate to use file_modified to update permissions
       consistently
     - f2fs: fix to do sanity check for inline inode
     - wifi: mac80211: fix use-after-free in chanctx code
     - iwlwifi: mvm: fix assert 1F04 upon reconfig
     - fs-writeback: writeback_sb_inodes：Recalculate 'wrote' according skipped
       pages
     - efi: Do not import certificates from UEFI Secure Boot for T2 Macs
     - bfq: Split shared queues on move between cgroups
     - bfq: Update cgroup information before merging bio
     - bfq: Track whether bfq_group is still online
     - ext4: fix use-after-free in ext4_rename_dir_prepare
     - ext4: fix warning in ext4_handle_inode_extension
     - ext4: fix bug_on in ext4_writepages
     - ext4: filter out EXT4_FC_REPLAY from on-disk superblock field s_state
     - ext4: fix bug_on in __es_tree_search
     - ext4: verify dir block before splitting it (CVE-2022-1184)
     - ext4: avoid cycles in directory h-tree (CVE-2022-1184)
     - ACPI: property: Release subnode properties with data nodes
     - tracing: Fix potential double free in create_var_ref()
     - PCI/PM: Fix bridge_d3_blacklist[] Elo i2 overwrite of Gigabyte X299
     - PCI: qcom: Fix runtime PM imbalance on probe errors
     - PCI: qcom: Fix unbalanced PHY init on probe errors
     - mm, compaction: fast_find_migrateblock() should return pfn in the target
       zone
     - [s390x] perf: obtain sie_block from the right address
     - dlm: fix plock invalid read
     - dlm: fix missing lkb refcount handling
     - ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock
     - scsi: dc395x: Fix a missing check on list iterator
     - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
     - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour.
     - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem
     - drm/nouveau/clk: Fix an incorrect NULL check on list iterator
     - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator
     - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX
     - [x86] drm/i915/dsi: fix VBT send packet port selection for ICL+
     - md: fix an incorrect NULL check in does_sb_need_changing
     - md: fix an incorrect NULL check in md_reload_sb
     - mtd: cfi_cmdset_0002: Move and rename
       chip_check/chip_ready/chip_good_for_write
     - mtd: cfi_cmdset_0002: Use chip_ready() for write on S29GL064N
     - media: coda: Fix reported H264 profile
     - media: coda: Add more H264 levels for CODA960
     - [amd64] RDMA/hfi1: Fix potential integer multiplication overflow errors
     - csky: patch_text: Fixup last cpu should be master
     - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375,
       A38x, A39x
     - irqchip: irq-xtensa-mx: fix initial IRQ affinity
     - cfg80211: declare MODULE_FIRMWARE for regulatory.db
     - mac80211: upgrade passive scan to active scan on DFS channels after beacon
       rx
     - um: chan_user: Fix winch_tramp() return value
     - um: Fix out-of-bounds read in LDT setup
     - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add]
     - ftrace: Clean up hash direct_functions on register failures
     - iommu/msm: Fix an incorrect NULL check on list iterator
     - nodemask.h: fix compilation error with GCC12
     - hugetlb: fix huge_pmd_unshare address update
     - xtensa/simdisk: fix proc_read_simdisk()
     - rtl818x: Prevent using not initialized queues
     - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
     - carl9170: tx: fix an incorrect use of list iterator
     - stm: ltdc: fix two incorrect NULL checks on list iterator
     - bcache: improve multithreaded bch_btree_check()
     - bcache: improve multithreaded bch_sectors_dirty_init()
     - bcache: remove incremental dirty sector counting for
       bch_sectors_dirty_init()
     - bcache: avoid journal no-space deadlock by reserving 1 journal bucket
     - serial: pch: don't overwrite xmit->buf[0] by x_char
     - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
     - gma500: fix an incorrect NULL check on list iterator
     - arm64: dts: qcom: ipq8074: fix the sleep clock frequency
     - phy: qcom-qmp: fix struct clk leak on probe errors
     - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries
     - ARM: pxa: maybe fix gpio lookup tables
     - SMB3: EBADF/EIO errors in rename/open caused by race condition in
       smb2_compound_op
     - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0
     - dt-bindings: gpio: altera: correct interrupt-cells
     - vdpasim: allow to enable a vq repeatedly
     - blk-iolatency: Fix inflight count imbalances and IO hangs on offline
     - coresight: core: Fix coresight device probe failure issue
     - phy: qcom-qmp: fix reset-controller leak on probe errors
     - net: ipa: fix page free in ipa_endpoint_trans_release()
     - net: ipa: fix page free in ipa_endpoint_replenish_one()
     - xfs: set inode size after creating symlink
     - xfs: sync lazy sb accounting on quiesce of read-only mounts
     - xfs: fix chown leaking delalloc quota blocks when fssetxattr fails
     - xfs: fix incorrect root dquot corruption error when switching
       group/project quota types
     - xfs: restore shutdown check in mapped write fault path
     - xfs: force log and push AIL to clear pinned inodes when aborting mount
     - xfs: consider shutdown in bmapbt cursor delete assert
     - xfs: assert in xfs_btree_del_cursor should take into account error
     - kseltest/cgroup: Make test_stress.sh work if run interactively
     - thermal/core: fix a UAF bug in __thermal_cooling_device_register()
     - thermal/core: Fix memory leak in the error path
     - bfq: Avoid merging queues with different parents
     - bfq: Drop pointless unlock-lock pair
     - bfq: Remove pointless bfq_init_rq() calls
     - bfq: Get rid of __bio_blkcg() usage
     - bfq: Make sure bfqg for which we are queueing requests is online
     - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq
     - Revert "random: use static branch for crng_ready()"
     - RDMA/rxe: Generate a completion for unsupported/invalid opcode
     - [mips*] IP27: Remove incorrect `cpu_has_fpu' override
     - [mips*] IP30: Remove incorrect `cpu_has_fpu' override
     - ext4: only allow test_dummy_encryption when supported
     - md: bcache: check the return value of kzalloc() in
       detached_dev_do_request()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.122
     - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
     - staging: greybus: codecs: fix type confusion of list iterator variable
     - iio: adc: ad7124: Remove shift from scan_type
     - tty: goldfish: Use tty_port_destroy() to destroy port
     - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
     - tty: n_tty: Restore EOF push handling behavior
     - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
       and ida_simple_get
     - usb: usbip: fix a refcount leak in stub_probe()
     - usb: usbip: add missing device lock on tweak configuration cmd
     - USB: storage: karma: fix rio_karma_init return
     - usb: musb: Fix missing of_node_put() in omap2430_probe
     - staging: fieldbus: Fix the error handling path in
       anybuss_host_common_probe()
     - pwm: lp3943: Fix duty calculation in case period was clamped
     - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
     - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
     - misc: fastrpc: fix an incorrect NULL check on list iterator
     - firmware: stratix10-svc: fix a missing check on list iterator
     - usb: typec: mux: Check dev_set_name() return value
     - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
     - iio: proximity: vl53l0x: Fix return value check of
       wait_for_completion_timeout
     - iio: adc: sc27xx: fix read big scale voltage not right
     - iio: adc: sc27xx: Fine tune the scale calibration values
     - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
     - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
     - serial: sifive: Report actual baud base rather than fixed 115200
     - coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier
     - extcon: ptn5150: Add queue work sync before driver release
     - soc: rockchip: Fix refcount leak in rockchip_grf_init
     - rtc: mt6397: check return value after calling platform_get_resource()
     - serial: meson: acquire port->lock in startup()
     - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485
     - serial: digicolor-usart: Don't allow CS5-6
     - serial: rda-uart: Don't allow CS5-6
     - serial: txx9: Don't allow CS5-6
     - serial: sh-sci: Don't allow CS5-6
     - serial: sifive: Sanitize CSIZE and c_iflag
     - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7
     - serial: stm32-usart: Correct CSIZE, bits, and parity
     - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
     - bus: ti-sysc: Fix warnings for unbind for serial
     - driver: base: fix UAF when driver_attach failed
     - driver core: fix deadlock in __device_attach
     - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking
     - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe
     - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition
     - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value
     - [s390x] crypto: fix scatterwalk_unmap() callers in AES-GCM
     - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog
     - net: ethernet: mtk_eth_soc: out of bounds read in
       mtk_hwlro_get_fdir_entry()
     - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks
     - net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
     - modpost: fix removing numeric suffixes
     - jffs2: fix memory leak in jffs2_do_fill_super
     - ubi: fastmap: Fix high cpu usage of ubi_bgt by making sure wl_pool not
       empty
     - ubi: ubi_create_volume: Fix use-after-free when volume creation failed
     - bpf: Fix probe read error in ___bpf_prog_run()
     - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct
       smc_wr_tx_pend_priv *"
     - nfp: only report pause frame configuration for physical device
     - sfc: fix considering that all channels have TX queues
     - sfc: fix wrong tx channel offset with efx_separate_tx_channels
     - net/mlx5: Don't use already freed action pointer
     - net/mlx5: correct ECE offset in query qp output
     - net/mlx5e: Update netdev features after changing XDP state
     - net: sched: add barrier to fix packet stuck problem for lockless qdisc
     - tcp: tcp_rtx_synack() can be called from process context
     - gpio: pca953x: use the correct register address to do regcache sync
     - afs: Fix infinite loop found by xfstest generic/676
     - scsi: sd: Fix potential NULL pointer dereference
     - tipc: check attribute length for bearer name
     - driver core: Fix wait_for_device_probe() & deferred_probe_timeout
       interaction
     - perf c2c: Fix sorting in percent_rmt_hitm_cmp()
     - dmaengine: idxd: set DMA_INTERRUPT cap bit
     - mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
     - bootconfig: Make the bootconfig.o as a normal object file
     - tracing: Fix sleeping function called from invalid context on RT kernel
     - tracing: Avoid adding tracer option before update_tracer_options
     - iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe()
     - iommu/arm-smmu-v3: check return value after calling
       platform_get_resource()
     - f2fs: remove WARN_ON in f2fs_is_valid_blkaddr
     - i2c: cadence: Increase timeout per message if necessary
     - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type
     - NFSv4: Don't hold the layoutget locks across multiple RPC calls
     - video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
     - video: fbdev: pxa3xx-gcu: release the resources correctly in
       pxa3xx_gcu_probe/remove()
     - xprtrdma: treat all calls not a bcall when bc_serv is NULL
     - netfilter: nat: really support inet nat without l3 address
     - netfilter: nf_tables: delete flowtable hooks via transaction list
     - powerpc/kasan: Force thread size increase with KASAN
     - netfilter: nf_tables: always initialize flowtable hook list in transaction
     - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe
     - netfilter: nf_tables: release new hooks on unsupported flowtable flags
     - netfilter: nf_tables: memleak flow rule from commit path
     - netfilter: nf_tables: bail out early if hardware offload is not supported
     - xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
     - af_unix: Fix a data-race in unix_dgram_peer_wake_me().
     - bpf, arm64: Clear prog->jited_len along prog->jited
     - net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
     - net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure
     - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer()
     - net: mdio: unexport __init-annotated mdio_bus_init()
     - net: xfrm: unexport __init-annotated xfrm4_protocol_init()
     - net: ipv6: unexport __init-annotated seg6_hmac_init()
     - net/mlx5: Rearm the FW tracer after each tracer event
     - net/mlx5: fs, fail conflicting actions
     - ip_gre: test csum_start instead of transport header
     - net: altera: Fix refcount leak in altera_tse_mdio_create
     - drm: imx: fix compiler warning with gcc-12
     - iio: dummy: iio_simple_dummy: check the return value of kstrdup()
     - staging: rtl8712: fix a potential memory leak in r871xu_drv_init()
     - iio: st_sensors: Add a local lock for protecting odr
     - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean()
     - tty: Fix a possible resource leak in icom_probe
     - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()
     - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop()
     - USB: host: isp116x: check return value after calling
       platform_get_resource()
     - drivers: tty: serial: Fix deadlock in sa1100_set_termios()
     - drivers: usb: host: Fix deadlock in oxu_bus_suspend()
     - USB: hcd-pci: Fully suspend across freeze/thaw cycle
     - sysrq: do not omit current cpu when showing backtrace of all active CPUs
     - usb: dwc2: gadget: don't reset gadget's driver->bus
     - misc: rtsx: set NULL intfdata when probe fails
     - extcon: Modify extcon device to be created after driver data is set
     - clocksource/drivers/sp804: Avoid error on multiple instances
     - staging: rtl8712: fix uninit-value in usb_read8() and friends
     - staging: rtl8712: fix uninit-value in r871xu_drv_init()
     - serial: msm_serial: disable interrupts in __msm_console_write()
     - kernfs: Separate kernfs_pr_cont_buf and rename_lock.
     - watchdog: wdat_wdt: Stop watchdog when rebooting the system
     - md: protect md_unregister_thread from reentrancy
     - scsi: myrb: Fix up null pointer access on myrb_cleanup()
     - Revert "net: af_key: add check for pfkey_broadcast in function
       pfkey_process"
     - ceph: allow ceph.dir.rctime xattr to be updatable
     - drm/radeon: fix a possible null pointer dereference
     - modpost: fix undefined behavior of is_arm_mapping_symbol()
     - [x86] cpu: Elide KCSAN for cpu_has() and friends
     - jump_label,noinstr: Avoid instrumentation for JUMP_LABEL=n builds
     - nbd: call genl_unregister_family() first in nbd_cleanup()
     - nbd: fix race between nbd_alloc_config() and module removal
     - nbd: fix io hung while disconnecting device
     - [s390x] gmap: voluntarily schedule during key setting
     - cifs: version operations for smb20 unneeded when legacy support disabled
     - nodemask: Fix return values to be unsigned
     - vringh: Fix loop descriptors check in the indirect cases
     - scripts/gdb: change kernel config dumping method
     - ALSA: hda/conexant - Fix loopback issue with CX20632
     - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo
       Yoga DuetITL 2021
     - cifs: return errors during session setup during reconnects
     - cifs: fix reconnect on smb3 mount types
     - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files
     - mmc: block: Fix CQE recovery reset success
     - net: phy: dp83867: retrigger SGMII AN when link change
     - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION
     - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling
     - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION
     - ixgbe: fix bcast packets Rx on VF after promisc removal
     - ixgbe: fix unexpected VLAN Rx in promisc mode on VF
     - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag
     - drm/bridge: analogix_dp: Support PSR-exit to disable transition
     - drm/atomic: Force bridge self-refresh-exit on CRTC switch
     - [powerpc*] 32: Fix overread/overwrite of thread_struct via ptrace
       (CVE-2022-32981)
     - [powerpc*] mm: Switch obsolete dssall to .long
     - interconnect: qcom: sc7180: Drop IP0 interconnects
     - interconnect: Restore sync state by ignoring ipa-virt in provider count
     - md/raid0: Ignore RAID0 layout if the second zone has only one device
     - PCI: qcom: Fix pipe clock imbalance
     - zonefs: fix handling of explicit_open option on mount
     - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT
     - tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.123
     - [x86] Mitigate Processor MMIO Stale Data vulnerabilities
       (CVE-2022-21123, CVE-2022-21125, CVE-2022-21166):
       + Documentation: Add documentation for Processor MMIO Stale Data
       + x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
       + x86/speculation: Add a common function for MD_CLEAR mitigation update
       + x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
       + x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
       + x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
       + x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
       + x86/speculation/srbds: Update SRBDS mitigation selection
       + x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
       + KVM: x86/speculation: Disable Fill buffer clear within guests
       + x86/speculation/mmio: Print SMT warning
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.124
     - 9p: missing chunk of "fs/9p: Don't update file type when updating file
       attributes"
     - nfsd: Replace use of rwsem with errseq_t
     - bpf: Fix incorrect memory charge cost calculation in stack_map_alloc()
     - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()
     - quota: Prevent memory allocation recursion while holding dq_lock
     - [armhf] ASoC: es8328: Fix event generation for deemphasis control
     - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to
       dmi_use_low_level_irq
     - scsi: vmw_pvscsi: Expand vcpuHint to 16 bits
     - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology
     - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd
       completion
     - scsi: ipr: Fix missing/incorrect resource cleanup in error case
     - scsi: pmcraid: Fix missing resource cleanup in error case
     - ALSA: hda/realtek - Add HW8326 support
     - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration
       failed
     - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg
     - random: credit cpu and bootloader seeds by default
     - pNFS: Don't keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE
     - pNFS: Avoid a live lock condition in pnfs_update_layout()
     - [x86] clocksource: hyper-v: unexport __init-annotated
       hv_init_clocksource()
     - i40e: Fix adding ADQ filter to TC0
     - i40e: Fix calculating the number of queue pairs
     - i40e: Fix call trace in setup_tx_descriptors
     - [x86] Drivers: hv: vmbus: Release cpu lock in error case
     - [x86] drm/i915/reset: Fix error_state_read ptr + offset use
     - nvme: use sysfs_emit instead of sprintf
     - nvme: add device name to warning in uuid_show()
     - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg
     - [arm64] ftrace: fix branch range checks
     - [arm64] ftrace: consistently handle PLTs.
     - block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
     - faddr2line: Fix overlapping text section failures, the sequel
     - [arm64,armhf] irqchip/gic-v3: Fix error handling in
       gic_populate_ppi_partitions
     - [arm64,armhf] irqchip/gic-v3: Fix refcount leak in
       gic_populate_ppi_partitions
     - i2c: designware: Use standard optional ref clock implementation
     - [x86] mei: me: add raptor lake point S DID
     - [x86] comedi: vmk80xx: fix expression for tx buffer size
     - USB: serial: option: add support for Cinterion MV31 with new baseline
     - USB: serial: io_ti: add Agilent E5805A support
     - [arm*] usb: dwc2: Fix memory leak in dwc2_hcd_init
     - serial: 8250: Store to lsr_save_flags after lsr read
     - dm mirror log: round up region bitmap size to BITS_PER_LONG
     - drm/amd/display: Cap OLED brightness per max frame-average luminance
     - ext4: fix bug_on ext4_mb_use_inode_pa
     - ext4: make variable "count" signed
     - ext4: add reserved GDT blocks check
     - [arm64] KVM: arm64: Don't read a HW interrupt pending state in user
       context
     - [x86] KVM: x86: Account a variety of miscellaneous allocations
     - [x86] KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel
       data leak
     - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine
     - virtio-pci: Remove wrong address verification in vp_del_vqs()
     - dma-direct: don't over-decrypt memory
     - net/sched: act_police: more accurate MTU policing
     - net: openvswitch: fix misuse of the cached connection on tuple changes
     - Revert "PCI: Make pci_enable_ptm() private"
     - igc: Enable PCIe PTM
     - [arm64] clk: imx8mp: fix usb_root_clk parent
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.125
     - [s390x] mm: use non-quiescing sske for KVM switch to keyed guest
     - zonefs: fix zonefs_iomap_begin() for reads
     - usb: gadget: u_ether: fix regression in setting fixed MAC address
     - tcp: add some entropy in __inet_hash_connect()
     - tcp: use different parts of the port_offset for index and offset
       (CVE-2022-1012)
     - tcp: add small random increments to the source port (CVE-2022-1012)
     - tcp: dynamically allocate the perturb table used by source ports
       (CVE-2022-1012)
     - tcp: increase source port perturb table to 2^16 (CVE-2022-1012,
       CVE-2022-32296)
     - tcp: drop the hash_32() part from the index calculation (CVE-2022-1012)
     - serial: core: Initialize rs485 RTS polarity already on probe
     - [arm64] mm: Don't invalidate FROM_DEVICE buffers at start of DMA transfer
     - io_uring: add missing item types for various requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.126
     - io_uring: use separate list entry for iopoll requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.127
     - vt: drop old FONT ioctls
     - random: schedule mix_interrupt_randomness() less often
     - random: quiet urandom warning ratelimit suppression message
     - ALSA: hda/via: Fix missing beep setup
     - ALSA: hda/conexant: Fix missing beep setup
     - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop
     - ALSA: hda/realtek - ALC897 headset MIC no sound
     - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly
     - ALSA: hda/realtek: Add quirk for Clevo PD70PNT
     - ALSA: hda/realtek: Add quirk for Clevo NS50PU
     - net: openvswitch: fix parsing of nw_proto for IPv6 fragments
     - btrfs: add error messages to all unrecognized mount options
     - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing
     - [armhf] mtd: rawnand: gpmi: Fix setting busy timeout setting
     - ata: libata: add qc->flags in ata_qc_complete_template tracepoint
     - dm era: commit metadata in postsuspend after worker stops
     - dm mirror log: clear log bits up to BITS_PER_LONG boundary
     - USB: serial: option: add Telit LE910Cx 0x1250 composition
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: option: add Quectel RM500K module support
     - [arm64] drm/msm: Fix double pm_runtime_disable() call
     - netfilter: nftables: add nft_parse_register_load() and use it
     - netfilter: nftables: add nft_parse_register_store() and use it
     - netfilter: use get_random_u32 instead of prandom
     - scsi: scsi_debug: Fix zone transition to full condition
     - [arm64] drm/msm: use for_each_sgtable_sg to iterate over scatterlist
     - bpf: Fix request_sock leak in sk lookup helpers
     - [arm64,armhf] drm/sun4i: Fix crash during suspend after component bind
       failure
     - [amd64] bpf, x86: Fix tail call count offset calculation on bpf2bpf call
     - phy: aquantia: Fix AN when higher speeds than 1G are not advertised
     - tipc: simplify the finalize work queue
     - tipc: fix use-after-free Read in tipc_named_reinit
     - igb: fix a use-after-free issue in igb_clean_tx_ring
     - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     - net/sched: sch_netem: Fix arithmetic in netem_dump() for 32-bit platforms
     - [arm64] drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf
     - [arm64] drm/msm/dp: check core_initialized before disable interrupts at
       dp_display_unbind()
     - [arm64] drm/msm/dp: fixes wrong connection state caused by failure of link
       train
     - [arm64] drm/msm/dp: deinitialize mainlink if link training failed
     - [arm64] drm/msm/dp: promote irq_hpd handle to handle link training
       correctly
     - [arm64] drm/msm/dp: fix connect/disconnect handled at irq_hpd
     - erspan: do not assume transport header is always set
     - x86/xen: Remove undefined behavior in setup_features()
     - afs: Fix dynamic root getattr
     - ice: ethtool: advertise 1000M speeds properly
     - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips
     - igb: Make DMA faster when CPU is active on the PCIe link
     - virtio_net: fix xdp_rxq_info bug after suspend/resume
     - nvme: centralize setting the timeout in nvme_alloc_request
     - nvme: split nvme_alloc_request()
     - nvme: mark nvme_setup_passsthru() inline
     - nvme: don't check nvme_req flags for new req
     - nvme-pci: allocate nvme_command within driver pdu
     - nvme-pci: add NO APST quirk for Kioxia device
     - nvme: move the Samsung X5 quirk entry to the core quirks
     - [s390x] cpumf: Handle events cycles and instructions identical
     - iio: mma8452: fix probe fail when device tree compatible is used.
     - iio: adc: vf610: fix conversion mode sysfs node name
     - xhci: turn off port power in shutdown
     - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI
     - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI
     - [arm64,armhf] usb: chipidea: udc: check request status before setting
       device address
     - f2fs: attach inline_data after setting compression
     - iio:accel:bma180: rearrange iio trigger get and register
     - iio:accel:mxc4005: rearrange iio trigger get and register
     - iio: accel: mma8452: ignore the return value of reset operation
     - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up()
     - iio: imu: inv_icm42600: Fix broken icm42600 (chip id 0 value)
     - iio: adc: axp288: Override TS pin bias current for some models
     - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client
     - [powerpc*] Enable execve syscall exit tracepoint
     - [powerpc*] rtas: Allow ibm,platform-dump RTAS call with null buffer
       address
     - [powerpc*] powernv: wire up rng during setup_arch
     - [armhf] exynos: Fix refcount leak in exynos_map_pmu
     - modpost: fix section mismatch check for exported init/exit sections
     - random: update comment from copy_to_user() -> copy_to_iter()
     - [powerpc*] pseries: wire up rng during setup_arch()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.120-rt70
   * [rt] Drop "crypto: cryptd - add a lock instead
     preempt_disable/local_bh_disable" patch
   * Bump ABI to 16
 .
   [ Ben Hutchings ]
   * random: Enable RANDOM_TRUST_BOOTLOADER. This can be reverted using the
     kernel parameter: random.trust_bootloader=off
   * [armel,armhf] crypto: Enable optimised implementations (see #922204):
     - Enable CRYPTO_SHA256_ARM, CRYPTO_SHA512_ARM as modules
     - [armhf] Enable SHA1_ARM_NEON, CRYPTO_SHA1_ARM_CE, CRYPTO_SHA2_ARM_CE,
       CRYPTO_AES_ARM_BS, CRYPTO_AES_ARM_CE, CRYPTO_GHASH_ARM_CE,
       CRYPTO_CRCT10DIF_ARM_CE, CRYPTO_CRC32_ARM_CE as modules
linux-signed-arm64 (5.10.120+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.120-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.114
     - USB: quirks: add a Realtek card reader
     - USB: quirks: add STRING quirk for VCOM device
     - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
     - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader
     - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB
     - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
     - xhci: Enable runtime PM on second Alderlake controller
     - xhci: stop polling roothubs after shutdown
     - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
     - iio: dac: ad5592r: Fix the missing return value.
     - iio: dac: ad5446: Fix read_raw not returning set value
     - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
     - iio: imu: inv_icm42600: Fix I2C init possible nack
     - usb: misc: fix improper handling of refcount in uss720_probe()
     - [arm64,x86] usb: typec: ucsi: Fix reuse of completion structure
     - [arm64,x86] usb: typec: ucsi: Fix role swapping
     - usb: gadget: uvc: Fix crash when encoding data for usb request
     - usb: gadget: configfs: clear deactivation flag in
       configfs_composite_unbind()
     - [arm64,armhf] usb: dwc3: Try usb-role-switch first in dwc3_drd_init
     - [arm64,armhf] usb: dwc3: core: Fix tx/rx threshold settings
     - [arm64,armhf] usb: dwc3: core: Only handle soft-reset in DCTL
     - [arm64,armhf] usb: dwc3: gadget: Return proper request status
     - [arm*] usb: phy: generic: Get the vbus supply
     - [arm64,armhf] serial: imx: fix overrun interrupts in DMA mode
     - serial: 8250: Also set sticky MCR bits in console restoration
     - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
     - [arm64,armhf] arch_topology: Do not set llc_sibling if llc_id is invalid
     - hex2bin: make the function hex_to_bin constant-time
     - hex2bin: fix access beyond string end
     - iocost: don't reset the inuse weight of under-weighted debtors
     - video: fbdev: udlfb: properly check endpoint type
     - iio:imu:bmi160: disable regulator in error path
     - USB: Fix xhci event ring dequeue pointer ERDP update issue
     - [armhf] phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
     - [armhf] phy: samsung: exynos5250-sata: fix missing device put in probe
       error paths
     - [armhf] OMAP2+: Fix refcount leak in omap_gic_of_init
     - [armhf] bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific
     - [armhf] phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
     - [armhf] dts: am3517-evm: Fix misc pinmuxing
     - [armhf] dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35
     - ipvs: correctly print the memory size of ip_vs_conn_tab
     - [armhf] pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered
       IRQs in EOI
     - [arm64,armhf] net: dsa: Add missing of_node_put() in
       dsa_port_link_register_of
     - netfilter: nft_set_rbtree: overlap detection with element re-addition
       after deletion
     - bpf, lwt: Fix crash when using bpf_skb_set_tunnel_key() from bpf_xmit lwt
       hook
     - [arm64,armhf] pinctrl: rockchip: fix RK3308 pinmux bits
     - tcp: md5: incorrect tcp_header_len for incoming connections
     - [armhf] pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ
       requested
     - tcp: ensure to use the most recently sent skb when filling the rate sample
     - wireguard: device: check for metadata_dst with skb_valid_dst()
     - sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     - [arm64] dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock
     - [arm64] net: hns3: modify the return code of hclge_get_ring_chain_from_mbx
     - [arm64] net: hns3: add validity check for message data length
     - [arm64] net: hns3: add return value for mailbox handling in PF
     - net/smc: sync err code when tcp connection was refused
     - ip_gre: Make o_seqno start from 0 in native mode
     - ip6_gre: Make o_seqno start from 0 in native mode
     - ip_gre, ip6_gre: Fix race condition on o_seqno in collect_md mode
     - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT
     - tcp: make sure treq->af_specific is initialized
     - [arm64,armhf] bus: sunxi-rsb: Fix the return value of
       sunxi_rsb_device_create()
     - [arm64,armhf] clk: sunxi: sun9i-mmc: check return value after calling
       platform_get_resource()
     - [arm64] net: bcmgenet: hide status block before TX timestamping
     - net: phy: marvell10g: fix return value on error
     - bnx2x: fix napi API usage sequence
     - [arm64,armhf] net: fec: add missing of_node_put() in
       fec_enet_init_stop_mode()
     - ixgbe: ensure IPsec VF<->PF compatibility
     - tcp: fix F-RTO may not work correctly when receiving DSACK
     - [x86] ASoC: Intel: soc-acpi: correct device endpoints for max98373
     - ext4: fix bug_on in start_this_handle during umount filesystem
     - [amd64] x86: __memcpy_flushcache: fix wrong alignment if size > 2^32
     - cifs: destage any unwritten data to the server before calling
       copychunk_write
     - [x86] drivers: net: hippi: Fix deadlock in rr_close()
     - zonefs: Fix management of open zones
     - zonefs: Clear inode information flags on inode creation
     - [x86] drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses
     - [armhf] net: ethernet: stmmac: fix write to sgmii_adapter_base
     - [x86] thermal: int340x: Fix attr.show callback prototype
     - [x86] cpu: Load microcode during restore_processor_state()
     - tty: n_gsm: fix restart handling via CLD command
     - tty: n_gsm: fix decoupled mux resource
     - tty: n_gsm: fix mux cleanup after unregister tty device
     - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2
     - tty: n_gsm: fix malformed counter for out of frame data
     - netfilter: nft_socket: only do sk lookups when indev is available
     - tty: n_gsm: fix insufficient txframe size
     - tty: n_gsm: fix wrong DLCI release order
     - tty: n_gsm: fix missing explicit ldisc flush
     - tty: n_gsm: fix wrong command retry handling
     - tty: n_gsm: fix wrong command frame length field encoding
     - tty: n_gsm: fix reset fifo race condition
     - tty: n_gsm: fix incorrect UA handling
     - tty: n_gsm: fix software flow control handling
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.115
     - [mips*] Fix CP0 counter erratum detection for R4k CPUs
     - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers
     - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
     - [arm64] mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC
     - mmc: core: Set HS clock speed before sending HS CMD13
     - gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
     - [x86] KVM: x86/svm: Account for family 17h event renumberings in
       amd_pmc_perf_hw_id
     - [amd64] iommu/vt-d: Calculate mask for non-aligned flushes
     - Revert "SUNRPC: attempt AF_LOCAL connect on setup"
     - firewire: fix potential uaf in outbound_phy_packet_callback()
     - firewire: remove check of list iterator against head past the loop body
     - firewire: core: extend card->lock in fw_core_handle_bus_reset
     - net: stmmac: disable Split Header (SPH) for Intel platforms
     - genirq: Synchronize interrupt thread startup
     - ASoC: da7219: Fix change notifications for tone generator frequency
     - [s390x] dasd: fix data corruption for ESE devices
     - [s390x] dasd: prevent double format of tracks for ESE devices
     - [s390x] dasd: Fix read for ESE with blksize < 4k
     - [s390x] dasd: Fix read inconsistency for ESE DASD devices
     - can: isotp: remove re-binding of bound socket
     - nfc: replace improper check device_is_registered() in netlink related
       functions (CVE-2022-1974)
     - NFC: netlink: fix sleep in atomic bug when firmware download timeout
       (CVE-2022-1975)
     - [arm64,armhf] gpio: pca953x: fix irq_stat not updated when irq is disabled
       (irq_mask not set)
     - hwmon: (adt7470) Fix warning on module removal
     - [arm*] ASoC: dmaengine: Restore NULL prepare_slave_config() callback
     - net/mlx5e: Fix trust state reset in reload
     - net/mlx5e: Don't match double-vlan packets if cvlan is not set
     - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft
       release
     - net/mlx5e: Fix the calling of update_buffer_lossy() API
     - net/mlx5: Avoid double clear or set of sync reset requested
     - NFSv4: Don't invalidate inode attributes on delegation return
     - [arm64,armhf] net: stmmac: dwmac-sun8i: add missing of_node_put() in
       sun8i_dwmac_register_mdio_mux()
     - [armhf] net: cpsw: add missing of_node_put() in cpsw_probe_dt()
     - hinic: fix bug of wq out of bound access
     - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
     - bnxt_en: Fix unnecessary dropping of RX packets
     - [arm64,armhf] smsc911x: allow using IRQ0
     - btrfs: always log symlinks in full mode
     - net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
     - [x86] kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has
       architectural PMU
     - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu
     - [x86] kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
     - [x86] KVM: x86: Do not change ICR on write to APIC_SELF_IPI
     - [x86] KVM: x86/mmu: avoid NULL-pointer dereference on page freeing bugs
     - [x86] KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is
       advertised
     - rcu: Fix callbacks processing time limit retaining cond_resched()
     - rcu: Apply callbacks processing time limit only on softirq
     - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
       (CVE-2022-0494)
     - dm: interlock pending dm_io and dm_wait_for_bios_completion
     - [arm64] PCI: aardvark: Clear all MSIs at setup
     - [arm64] PCI: aardvark: Fix reading MSI interrupt number
     - mmc: rtsx: add 74 Clocks in power on flow
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.116
     - regulator: consumer: Add missing stubs to regulator/consumer.h
     - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
     - nfp: bpf: silence bitwise vs. logical OR warning
     - Bluetooth: Fix the creation of hdev->name
     - mm: fix missing cache flush for all tail pages of compound page
     - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
     - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and
       __mcopy_atomic()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.117
     - batman-adv: Don't skb_split skbuffs with frag_list
     - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing
     - hwmon: (tmp401) Add OF device ID table
     - mac80211: Reset MBSSID parameters upon connection
     - net: Fix features skip in for_each_netdev_feature()
     - [arm64] net: mscc: ocelot: fix last VCAP IS1/IS2 filter persisting in
       hardware when deleted
     - [arm64] net: mscc: ocelot: fix VCAP IS2 filters matching on both lookups
     - [arm64] net: mscc: ocelot: restrict tc-trap actions to VCAP IS2 lookup 0
     - [arm64] net: mscc: ocelot: avoid corrupting hardware counters when moving
       VCAP filters
     - ipv4: drop dst in multicast routing path
     - drm/nouveau: Fix a potential theorical leak in
       nouveau_get_backlight_name()
     - netlink: do not reset transport header in netlink_recvmsg()
     - sfc: Use swap() instead of open coding it
     - net: sfc: fix memory leak due to ptp channel
     - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
     - nfs: fix broken handling of the softreval mount option
     - dim: initialize all struct fields
     - [s390x] ctcm: fix variable dereferenced before check
     - [s390x] ctcm: fix potential memory leak
     - [s390x] lcs: fix variable dereferenced before check
     - net/sched: act_pedit: really ensure the skb is writable
     - [arm64] net: bcmgenet: Check for Wake-on-LAN interrupt probe deferral
     - [armhf] net: dsa: bcm_sf2: Fix Wake-on-LAN with mac_link_down()
     - net/smc: non blocking recvmsg() return -EAGAIN when no data and
       signal_pending
     - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
     - gfs2: Fix filesystem block deallocation for short writes
     - hwmon: (f71882fg) Fix negative temperature
     - ASoC: max98090: Reject invalid values in custom control put()
     - ASoC: max98090: Generate notifications on changes for custom control
     - ASoC: ops: Validate input values in snd_soc_put_volsw_range()
     - net: sfp: Add tx-fault workaround for Huawei MA5671A SFP ONT
     - tcp: resalt the secret every 10 seconds (CVE-2022-1012)
     - firmware_loader: use kernel credentials when reading firmware
     - tty: n_gsm: fix mux activation issues in gsm_config()
     - usb: cdc-wdm: fix reading stuck on device close
     - USB: serial: pl2303: add device id for HP LM930 Display
     - USB: serial: qcserial: add support for Sierra Wireless EM7590
     - USB: serial: option: add Fibocom L610 modem
     - USB: serial: option: add Fibocom MA510 modem
     - ceph: fix setting of xattrs on async created inodes
     - drm/nouveau/tegra: Stop using iommu_present()
     - i40e: i40e_main: fix a missing check on list iterator
     - [amd64,arm64] net: atlantic: always deep reset on pm op, fixing up my null
       deref regression
     - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
     - [x86] drm/vmwgfx: Initialize drm_mode_fb_cmd2
     - SUNRPC: Clean up scheduling of autoclose
     - SUNRPC: Prevent immediate close+reconnect
     - SUNRPC: Don't call connect() more than once on a TCP socket
     - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
       (CVE-2022-28893)
     - net: phy: Fix race condition on link status change
     - [arm*] arm[64]/memremap: don't abuse pfn_valid() to ensure presence of
       linear map
     - ping: fix address binding wrt vrf
     - usb: gadget: uvc: rename function to be more consistent
     - usb: gadget: uvc: allow for application to cleanly shutdown
     - io_uring: always use original task when preparing req identity
       (CVE-2022-1786)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.118
     - io_uring: always grab file table for deferred statx
     - floppy: use a statically allocated error counter
     - [x86] Revert "drm/i915/opregion: check port number bounds for SWSCI
       display power state"
     - igc: Remove _I_PHY_ID checking
     - igc: Remove phy->type checking
     - igc: Update I226_K device ID
     - rtc: fix use-after-free on device removal
     - [arm64] rtc: pcf2127: fix bug when reading alarm registers
     - Input: add bounds checking to input_set_capability()
     - nvme-pci: add quirks for Samsung X5 SSDs
     - gfs2: Disable page faults during lockless buffered reads
     - [arm64,armhf] rtc: sun6i: Fix time overflow handling
     - [armhf] crypto: stm32 - fix reference leak in stm32_crc_remove
     - [amd64] crypto: x86/chacha20 - Avoid spurious jumps to other functions
     - ALSA: hda/realtek: Enable headset mic on Lenovo P360
     - [s390x] pci: improve zpci_dev reference counting
     - nvme-multipath: fix hang when disk goes live over reconnect
     - rtc: mc146818-lib: Fix the AltCentury for AMD platforms
     - fs: fix an infinite loop in iomap_fiemap
     - drbd: remove usage of list iterator variable after loop
     - [arm64] platform/chrome: cros_ec_debugfs: detach log reader wq from devm
     - [armel,armhf] 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in
       unwind_frame()
     - nilfs2: fix lockdep warnings in page operations for btree nodes
     - nilfs2: fix lockdep warnings during disk space reclamation
     - Revert "swiotlb: fix info leak with DMA_FROM_DEVICE"
     - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
       (CVE-2022-0854)
     - ALSA: usb-audio: Restore Rane SL-1 quirk
     - [i386] ALSA: wavefront: Proper check of get_user() error
     - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
     - perf: Fix sys_perf_event_open() race against self (CVE-2022-1729)
     - selinux: fix bad cleanup on error in hashtab_duplicate()
     - Fix double fget() in vhost_net_set_backend()
     - PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
     - [x86] KVM: x86/mmu: Update number of zapped pages even if page list is
       stable
     - [arm64] paravirt: Use RCU read locks to guard stolen_time
     - [arm64] mte: Ensure the cleared tags are visible before setting the PTE
     - [arm64] crypto: qcom-rng - fix infinite loop on requests not multiple of
       WORD_SZ
     - libceph: fix potential use-after-free on linger ping and resends
     - drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
     - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
     - [armhf] pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl
     - [arm64] net: macb: Increment rx bd head after allocating skb and buffer
     - net: evaluate net.ipvX.conf.all.disable_policy and disable_xfrm
     - xfrm: Add possibility to set the default to block if we have no policy
     - net: xfrm: fix shift-out-of-bounce
     - xfrm: make user policy API complete
     - xfrm: notify default policy on update
     - xfrm: fix dflt policy check when there is no policy configured
     - xfrm: rework default policy structure
     - xfrm: fix "disable_policy" flag use when arriving from different devices
     - net/sched: act_pedit: sanitize shift argument before usage
     - [x86] net: vmxnet3: fix possible use-after-free bugs in
       vmxnet3_rq_alloc_rx_buf()
     - [x86] net: vmxnet3: fix possible NULL pointer dereference in
       vmxnet3_rq_cleanup()
     - ice: fix possible under reporting of ethtool Tx and Rx statistics
     - net/qla3xxx: Fix a test in ql_reset_work()
     - net/mlx5e: Properly block LRO when XDP is enabled
     - net: af_key: add check for pfkey_broadcast in function pfkey_process
     - [armhf] 9196/1: spectre-bhb: enable for Cortex-A15
     - [armel,armhf] 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
     - igb: skip phy status check where unavailable
     - net: bridge: Clear offload_fwd_mark when passing frame up bridge
       interface.
     - [arm*] gpio: mvebu/pwm: Refuse requests with inverted polarity
     - scsi: qla2xxx: Fix missed DMA unmap for aborted commands
     - mac80211: fix rx reordering with non explicit / psmp ack policy
     - nl80211: validate S1G channel width
     - nl80211: fix locking in nl80211_set_tx_bitrate_mask()
     - ethernet: tulip: fix missing pci_disable_device() on error in
       tulip_init_one()
     - [amd64,arm64] net: atlantic: fix "frag[0] not initialized"
     - [amd64,arm64] net: atlantic: reduce scope of is_rsc_complete
     - [amd64,arm64] net: atlantic: add check for MAX_SKB_FRAGS
     - [amd64,arm64] net: atlantic: verify hw_head_ lies within TX buffer ring
     - [arm64] Enable repeat tlbi workaround on KRYO4XX gold CPUs
     - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group
     - afs: Fix afs_getattr() to refetch file status if callback break occurred
     - include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.119
     - lockdown: also lock down previous kgdb use (CVE-2022-21499)
     - staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
     - [x86] KVM: x86: Properly handle APF vs disabled LAPIC situation
     - [x86] KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
       (CVE-2022-1789)
     - tcp: change source port randomizarion at connect() time
     - secure_seq: use the 64 bits of the siphash for port offset calculation
       (CVE-2022-1012)
     - ACPI: sysfs: Make sparse happy about address space in use
     - ACPI: sysfs: Fix BERT error region memory mapping
     - random: avoid arch_get_random_seed_long() when collecting IRQ randomness
     - random: remove dead code left over from blocking pool
     - MAINTAINERS: co-maintain random.c
     - MAINTAINERS: add git tree for random.c
     - crypto: lib/blake2s - Move selftest prototype into header file
     - crypto: blake2s - define shash_alg structs using macros
     - [amd64] crypto: x86/blake2s - define shash_alg structs using macros
     - crypto: blake2s - remove unneeded includes
     - crypto: blake2s - move update and final logic to internal/blake2s.h
     - crypto: blake2s - share the "shash" API boilerplate code
     - crypto: blake2s - optimize blake2s initialization
     - crypto: blake2s - add comment for blake2s_state fields
     - crypto: blake2s - adjust include guard naming
     - crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h>
     - lib/crypto: blake2s: include as built-in
     - lib/crypto: blake2s: move hmac construction into wireguard
     - lib/crypto: sha1: re-roll loops to reduce code size
     - lib/crypto: blake2s: avoid indirect calls to compression function for
       Clang CFI
     - random: document add_hwgenerator_randomness() with other input functions
     - random: remove unused irq_flags argument from add_interrupt_randomness()
     - random: use BLAKE2s instead of SHA1 in extraction
     - random: do not sign extend bytes for rotation when mixing
     - random: do not re-init if crng_reseed completes before primary init
     - random: mix bootloader randomness into pool
     - random: harmonize "crng init done" messages
     - random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs
     - random: early initialization of ChaCha constants
     - random: avoid superfluous call to RDRAND in CRNG extraction
     - random: don't reset crng_init_cnt on urandom_read()
     - random: fix typo in comments
     - random: cleanup poolinfo abstraction
     - random: cleanup integer types
     - random: remove incomplete last_data logic
     - random: remove unused extract_entropy() reserved argument
     - random: rather than entropy_store abstraction, use global
     - random: remove unused OUTPUT_POOL constants
     - random: de-duplicate INPUT_POOL constants
     - random: prepend remaining pool constants with POOL_
     - random: cleanup fractional entropy shift constants
     - random: access input_pool_data directly rather than through pointer
     - random: selectively clang-format where it makes sense
     - random: simplify arithmetic function flow in account()
     - random: continually use hwgenerator randomness
     - random: access primary_pool directly rather than through pointer
     - random: only call crng_finalize_init() for primary_crng
     - random: use computational hash for entropy extraction
     - random: simplify entropy debiting
     - random: use linear min-entropy accumulation crediting
     - random: always wake up entropy writers after extraction
     - random: make credit_entropy_bits() always safe
     - random: remove use_input_pool parameter from crng_reseed()
     - random: remove batched entropy locking
     - random: fix locking in crng_fast_load()
     - random: use RDSEED instead of RDRAND in entropy extraction
     - random: get rid of secondary crngs
     - random: inline leaves of rand_initialize()
     - random: ensure early RDSEED goes through mixer on init
     - random: do not xor RDRAND when writing into /dev/random
     - random: absorb fast pool into input pool after fast load
     - random: use simpler fast key erasure flow on per-cpu keys
     - random: use hash function for crng_slow_load()
     - random: make more consistent use of integer types
     - random: remove outdated INT_MAX >> 6 check in urandom_read()
     - random: zero buffer after reading entropy from userspace
     - random: fix locking for crng_init in crng_reseed()
     - random: tie batched entropy generation to base_crng generation
     - random: remove ifdef'd out interrupt bench
     - random: remove unused tracepoints
     - random: add proper SPDX header
     - random: deobfuscate irq u32/u64 contributions
     - random: introduce drain_entropy() helper to declutter crng_reseed()
     - random: remove useless header comment
     - random: remove whitespace and reorder includes
     - random: group initialization wait functions
     - random: group crng functions
     - random: group entropy extraction functions
     - random: group entropy collection functions
     - random: group userspace read/write functions
     - random: group sysctl functions
     - random: rewrite header introductory comment
     - random: defer fast pool mixing to worker
     - random: do not take pool spinlock at boot
     - random: unify early init crng load accounting
     - random: check for crng_init == 0 in add_device_randomness()
     - random: pull add_hwgenerator_randomness() declaration into random.h
     - random: clear fast pool, crng, and batches in cpuhp bring up
     - random: round-robin registers as ulong, not u32
     - random: only wake up writers after zap if threshold was passed
     - random: cleanup UUID handling
     - random: unify cycles_t and jiffies usage and types
     - random: do crng pre-init loading in worker rather than irq
     - random: give sysctl_random_min_urandom_seed a more sensible value
     - random: don't let 644 read-only sysctls be written to
     - random: replace custom notifier chain with standard one
     - random: use SipHash as interrupt entropy accumulator
     - random: make consistent usage of crng_ready()
     - random: reseed more often immediately after booting
     - random: check for signal and try earlier when generating entropy
     - random: skip fast_init if hwrng provides large chunk of entropy
     - random: treat bootloader trust toggle the same way as cpu trust toggle
     - random: re-add removed comment about get_random_{u32,u64} reseeding
     - random: mix build-time latent entropy into pool at init
     - random: do not split fast init input in add_hwgenerator_randomness()
     - random: do not allow user to keep crng key around on stack
     - random: check for signal_pending() outside of need_resched() check
     - random: check for signals every PAGE_SIZE chunk of /dev/[u]random
     - random: allow partial reads if later user copies fail
     - random: make random_get_entropy() return an unsigned long
     - random: document crng_fast_key_erasure() destination possibility
     - random: fix sysctl documentation nits
     - init: call time_init() before rand_initialize()
     - [s390x] define get_cycles macro for arch-override
     - [powerpc*] define get_cycles macro for arch-override
     - timekeeping: Add raw clock fallback for random_get_entropy()
     - [mips*] use fallback for random_get_entropy() instead of just c0 random
     - [arm*] use fallback for random_get_entropy() instead of zero
     - [x86] tsc: Use fallback for random_get_entropy() instead of zero
     - random: insist on random_get_entropy() existing in order to simplify
     - random: do not use batches when !crng_ready()
     - random: use first 128 bits of input as fast init
     - random: do not pretend to handle premature next security model
     - random: order timer entropy functions below interrupt functions
     - random: do not use input pool from hard IRQs
     - random: help compiler out with fast_mix() by using simpler arguments
     - siphash: use one source of truth for siphash permutations
     - random: use symbolic constants for crng_init states
     - random: avoid initializing twice in credit race
     - random: move initialization out of reseeding hot path
     - random: remove ratelimiting for in-kernel unseeded randomness
     - random: use proper jiffies comparison macro
     - random: handle latent entropy and command line from random_init()
     - random: credit architectural init the exact amount
     - random: use static branch for crng_ready()
     - random: remove extern from functions in header
     - random: use proper return types on get_random_{int,long}_wait()
     - random: make consistent use of buf and len
     - random: move initialization functions out of hot pages
     - random: move randomize_page() into mm where it belongs
     - random: unify batched entropy implementations
     - random: convert to using fops->read_iter()
     - random: convert to using fops->write_iter()
     - random: wire up fops->splice_{read,write}_iter()
     - random: check for signals after page of pool writes
     - ALSA: ctxfi: Add SB046x PCI ID
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.120
     - percpu_ref_init(): clean ->percpu_count_ref on failure
     - net: af_key: check encryption module availability consistency
     - nfc: pn533: Fix buggy cleanup order
     - [armhf] net: ftgmac100: Disable hardware checksum on AST2600
     - [x86] i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
     - [arm64] drivers: i2c: thunderx: Allow driver to work with ACPI defined
       TWSI controllers
     - netfilter: nf_tables: disallow non-stateful expression in sets earlier
       (CVE-2022-1966)
     - pipe: make poll_usage boolean and annotate its access
     - pipe: Fix missing lock in pipe_resize_ring() (ZDI-CAN-17291)
     - cfg80211: set custom regdomain after wiphy registration
     - assoc_array: Fix BUG_ON during garbage collect
     - io_uring: don't re-import iovecs from callbacks
     - io_uring: fix using under-expanded iters
     - xfs: detect overflows in bmbt records
     - xfs: show the proper user quota options
     - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
     - xfs: fix an ABBA deadlock in xfs_rename
     - xfs: Fix CIL throttle hang when CIL space used going backwards
     - exfat: check if cluster num is valid
     - crypto: drbg - prepare for more fine-grained tracking of seeding state
     - crypto: drbg - track whether DRBG was seeded with !rng_is_initialized()
     - crypto: drbg - move dynamic ->reseed_threshold adjustments to
       __drbg_seed()
     - crypto: drbg - make reseeding from get_random_bytes() synchronous
     - netfilter: nf_tables: sanitize nft_set_desc_concat_parse() (CVE-2022-1972)
     - netfilter: conntrack: re-fetch conntrack after insertion
     - [x86] kvm: Alloc dummy async #PF token outside of raw spinlock
     - [x86] kvm: use correct GFP flags for preemption disabled
     - [x86] KVM: x86: avoid calling x86 emulator without a decoded instruction
       (CVE-2022-1852)
     - [arm64] crypto: caam - fix i.MX6SX entropy delay value
     - crypto: ecrdsa - Fix incorrect use of vli_cmp
     - zsmalloc: fix races between asynchronous zspage free and page migration
     - Bluetooth: hci_qca: Use del_timer_sync() before freeing
     - dm integrity: fix error code in dm_integrity_ctr()
     - dm crypt: make printing of the key constant-time
     - dm stats: add cond_resched when looping over entries
     - dm verity: set DM_TARGET_IMMUTABLE feature flag
     - raid5: introduce MD_BROKEN
     - HID: multitouch: Add support for Google Whiskers Touchpad
     - HID: multitouch: add quirks to enable Lenovo X12 trackpoint
     - tpm: Fix buffer access in tpm2_get_tpm_pt()
     - docs: submitting-patches: Fix crossref to 'The canonical patch format'
     - NFS: Memory allocation failures are not server fatal errors
     - NFSD: Fix possible sleep during nfsd4_release_lockowner()
     - bpf: Fix potential array overflow in bpf_trampoline_get_progs()
     - bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.115-rt67
   * Bump ABI to 15
   * [rt] Drop "random: Make it work on rt"
 .
   [ Mateusz Łukasik ]
   * [armhf] drivers/thermal: Enable SUN8I_THERMAL as module (Closes: #1007799)
linux-signed-arm64 (5.10.120+1~bpo10+1) buster-backports; urgency=high
 .
   * Sign kernel from linux 5.10.120-1~bpo10+1
 .
   * Rebuild for buster-backports:
     - Change ABI number to 0.bpo.15
linux-signed-arm64 (5.10.113+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.113-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.107
     - Revert "xfrm: state and policy should fail if XFRMA_IF_ID 0"
       (Closes: #1008299)
     - xfrm: Check if_id in xfrm_migrate
     - xfrm: Fix xfrm migrate issues when address family changes
     - mac80211: refuse aggregations sessions before authorized
     - [mips64el,mipsel] smp: fill in sibling and core maps earlier
     - [x86] atm: firestream: check the return value of ioremap() in fs_init()
     - iwlwifi: don't advertise TWT support
     - drm/vrr: Set VRR capable prop only if it is attached to connector
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - sfc: extend the locking on mcdi->seqno
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.108
     - [arm64] crypto: qcom-rng - ensure buffer for generate is completely filled
     - ocfs2: fix crash when initialize filecheck kobj fails
     - mm: swap: get rid of livelock in swapin readahead
     - efi: fix return value of __setup handlers
     - vsock: each transport cycles only on its own sockets
     - esp6: fix check on ipv6_skip_exthdr's return value
     - net: phy: marvell: Fix invalid comparison in the resume and suspend
       functions
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - [x86] hv_netvsc: Add check for kvmalloc_array
     - [armhf] drm/imx: parallel-display: Remove bus flags check in
       imx_pd_bridge_atomic_check()
     - [arm64,armhf] drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - [arm64,armhf] net: dsa: Add missing of_node_put() in dsa_port_parse_of
     - net: phy: mscc: Add MODULE_FIRMWARE macros
     - bnx2x: fix built-in kernel driver load failure
     - [arm64] net: bcmgenet: skip invalid partial checksums
     - [arm64] net: mscc: ocelot: fix backwards compatibility with single-chain
       tc-flower offload
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - usb: usbtmc: Fix bug in pipe direction for control transfers
     - scsi: mpt3sas: Page fault in reply q processing
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: usb: Correct PHY handling of smsc95xx
     - net: usb: Correct reset handling of smsc95xx
     - smsc95xx: Ignore -ENODEV errors when device is unplugged
     - esp: Fix possible buffer overflow in ESP transformation (CVE-2022-27666)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.109
     - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
       (CVE-2022-26490)
     - net: ipv6: fix skb_over_panic in __ip6_append_data
     - exfat: avoid incorrectly releasing for root inode
     - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv
       (CVE-2021-4197)
     - cgroup: Use open-time cgroup namespace for process migration perm checks
       (CVE-2021-4197)
     - cgroup-v1: Correct privileges check in release_agent writes
     - tpm: Fix error handling in async work
     - llc: fix netdevice reference leaks in llc_ui_bind() (CVE-2022-28356)
     - ALSA: oss: Fix PCM OSS buffer allocation overflow
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
     - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
     - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
     - ALSA: hda/realtek: Add quirk for ASUS GA402
     - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent read/write and buffer changes
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prealloc proc writes (CVE-2022-1048)
     - ALSA: pcm: Add stream lock during PCM reset ioctl operations
     - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
     - ALSA: cmipci: Restore aux vol on suspend/resume
     - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
     - [arm64] drivers: net: xgene: Fix regression in CRC stripping
     - netfilter: nf_tables: initialize registers in nft_do_chain()
       (CVE-2022-1016)
     - [x86] ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
     - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
     - [x86] ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
     - [x86] crypto: qat - disable registration of algorithms
     - Revert "ath: add support for special 0x0 regulatory domain"
     - rcu: Don't deboost before reporting expedited quiescent state
     - mac80211: fix potential double free on mesh join
     - tpm: use try_get_ops() in tpm-space.c
     - [arm64] wcn36xx: Differentiate wcn3660 from wcn3620
     - llc: only change llc->dev when bind() succeeds
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.110
     - swiotlb: fix info leak with DMA_FROM_DEVICE (CVE-2022-0854)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - HID: logitech-dj: add new lightspeed receiver id
     - xfrm: fix tunnel model fragmentation behavior
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - gpio: Revert regression in sysfs-gpio (gpiolib.c)
     - spi: Fix invalid sgs value
     - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register (CVE-2022-1353)
     - [arm*] iommu/iova: Improve 32-bit free space estimate
     - tpm: fix reference counting for struct tpm_chip
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - xhci: fix garbage USBSTS being logged in some cases
     - xhci: fix runtime PM imbalance in USB2 resume
     - xhci: make xhci_handshake timeout for xhci_reset() adjustable
     - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
     - [x86] mei: me: add Alder Lake N device id.
     - [x86] mei: avoid iterator usage outside of list_for_each_entry
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
     - KEYS: fix length validation in keyctl_pkey_params_get_2()
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - firmware: stratix10-svc: add missing callback parameter on RSU
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - NFSD: prevent integer overflow on 32 bit systems
     - f2fs: fix to unlock page correctly in error path of is_alive()
     - f2fs: quota: fix loop condition at f2fs_quota_sync()
     - f2fs: fix to do sanity check on .cp_pack_total_block_count
     - [armhf] remoteproc: Fix count check in rproc_coredump_write()
     - [armhf] pinctrl: samsung: drop pin banks references on error paths
     - mtd: rawnand: protect access to rawnand devices while in suspend
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28390)
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mm: invalidate hwpoison page cache page in fault path
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - cifs: prevent bad output lengths in smb2_ioctl_query_info()
     - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
       (CVE-2022-0168)
     - [i386] ALSA: cs4236: fix an incorrect NULL check on list iterator
     - ALSA: hda: Avoid unsol event during RPM suspending
     - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
     - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
     - mm: madvise: skip unmapped vma holes passed to process_madvise
     - mm: madvise: return correct bytes advised with process_madvise
     - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
     - mm,hwpoison: unmap poisoned page before invalidation
     - dm integrity: set journal entry unused when shrinking device
     - drbd: fix potential silent data corruption
     - can: isotp: sanitize CAN ID checks in isotp_bind()
     - [powerpc*] kvm: Fix kvm_use_magic_page
     - udp: call udp_encap_enable for v6 sockets when enabling encap
     - [arm64] signal: nofpsimd: Do not allocate fp/simd context when not
       available
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - coredump: Also dump first pages of non-executable ELF libraries
     - ext4: fix ext4_fc_stats trace point
     - ext4: fix fs corruption when tring to remove a non-empty directory with IO
       error
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
       (CVE-2022-1198)
     - block: limit request dispatch loop duration
     - block: don't merge across cgroup boundaries if blkcg is enabled
     - drm/edid: check basic audio support on CEA extension block
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5250
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5420
     - [x86] mgag200 fix memmapsl configuration in GCTL6 register
     - carl9170: fix missing bit-wise or operator for tx_params
     - pstore: Don't use semaphores in always-atomic-context code
     - [x86] thermal: int340x: Increase bitmap size
     - exec: Force single empty string when argv is empty
     - crypto: rsa-pkcs1pad - only allow with rsa
     - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
     - crypto: rsa-pkcs1pad - restore signature length check
     - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
     - bcache: fixup multiple threads crash
     - DEC: Limit PMAX memory probing to R3k systems
     - brcmfmac: firmware: Allocate space for default boardrev in nvram
     - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
     - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
     - brcmfmac: pcie: Fix crashes due to early IRQs
     - [x86] drm/i915/opregion: check port number bounds for SWSCI display power
       state
     - [x86] drm/i915/gem: add missing boundary check in vm_access
     - PCI: pciehp: Clear cmd_busy bit in polling mode
     - [arm64] PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
     - [arm64] regulator: qcom_smd: fix for_each_child.cocci warnings
     - selinux: check return value of sel_make_avc_files
     - [arm64] hwrng: cavium - Check health status while reading random data
     - [arm64] hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
     - crypto: authenc - Fix sleep in atomic context in decrypt_tail
     - [x86] thermal: int340x: Check for NULL after calling kmemdup()
     - [arm64,armhf] spi: tegra114: Add missing IRQ check in tegra_spi_probe
     - [arm64] mm: avoid fixmap race condition when create pud mapping
     - audit: log AUDIT_TIME_* records only from rules
     - spi: pxa2xx-pci: Balance reference count for PCI DMA device
     - [armhf] hwmon: (pmbus) Add mutex to regulator ops
     - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
     - nvme: cleanup __nvme_check_ids
     - block: don't delete queue kobject before its children
     - PM: hibernate: fix __setup handler error handling
     - PM: suspend: fix return value of __setup handler
     - [arm64] crypto: sun8i-ce - call finalize with bh disabled
     - [arm64,armhf] crypto: amlogic - call finalize with bh disabled
     - [armhf] clocksource/drivers/timer-ti-dm: Fix regression from errata i940
       fix
     - [armhf] clocksource/drivers/exynos_mct: Refactor resources allocation
     - [armhf] clocksource/drivers/exynos_mct: Handle DTS with higher number of
       interrupts
     - clocksource/drivers/timer-of: Check return value of of_iomap in
       timer_of_base_init()
     - ACPI: APEI: fix return value of __setup handlers
     - [x86] crypto: ccp - ccp_dmaengine_unregister release dma channels
     - [arm*] amba: Make the remove callback return void
     - [armhf] hwmon: (pmbus) Add Vin unit off handling
     - [x86] clocksource: acpi_pm: fix return value of __setup handler
     - io_uring: terminate manual loop iterator loop correctly for non-vecs
     - watch_queue: Fix NULL dereference in error cleanup
     - watch_queue: Actually free the watch
     - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
     - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
     - sched/core: Export pelt_thermal_tp
     - rseq: Optimise rseq_get_rseq_cs() and clear_rseq_cs()
     - rseq: Remove broken uapi field layout on 32-bit little endian
     - perf/core: Fix address filter parser for multiple filters
     - [x86] perf/x86/intel/pt: Fix address filter config for 32-bit kernel
     - f2fs: fix missing free nid in f2fs_handle_failed_inode
     - nfsd: more robust allocation failure handling in nfsd_file_cache_init
     - f2fs: fix to avoid potential deadlock
     - btrfs: fix unexpected error path when reflinking an inline extent
     - f2fs: compress: remove unneeded read when rewrite whole cluster
     - f2fs: fix compressed file start atomic write may cause data corruption
     - [arm64,armhf] media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP
       buffers across ioctls
     - media: bttv: fix WARNING regression on tunerless devices
     - [arm*] ASoC: generic: simple-card-utils: remove useless assignment
     - [armhf] media: coda: Fix missing put_device() call in coda_get_vdoa_data
     - [armhf] media: aspeed: Correct value for h-total-pixels
     - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
       avoid black screen
     - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
     - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
     - [arm64] firmware: qcom: scm: Remove reassignment to desc following
       initializer
     - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is
       not defined
     - [armhf] dts: imx: Add missing LVDS decoder on M53Menlo
     - media: em28xx: initialize refcount before kref_get
     - media: usb: go7007: s2250-board: fix leak in probe()
     - [arm64,armhf] media: cedrus: H265: Fix neighbour info buffer size
     - [arm64,armhf] media: cedrus: h264: Fix neighbour info buffer size
     - [x86] ASoC: rt5663: check the return value of devm_kzalloc() in
       rt5663_parse_dp()
     - printk: fix return value of printk.devkmsg __setup handler
     - [x86] ASoC: soc-compress: prevent the potentially use of null pointer
     - [armhf] memory: emif: Add check for setup_interrupts
     - [armhf] memory: emif: check the pointer temp in get_device_details()
     - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
     - [arm64] dts: rockchip: Fix SDIO regulator supply properties on
       rk3399-firefly
     - media: stk1160: If start stream fails, return buffers with
       VB2_BUF_STATE_QUEUED
     - media: saa7134: convert list_for_each to entry variant
     - media: saa7134: fix incorrect use to determine if list is empty
     - ivtv: fix incorrect device_caps for ivtvfb
     - [arm64,armhf] ASoC: rockchip: i2s: Use
       devm_platform_get_and_ioremap_resource()
     - [arm64,armhf] ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
       rockchip_i2s_probe
     - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
     - [armhf] ASoC: fsl_spdif: Disable TX clock when stop
     - [armhf] ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
     - [arm64] drm/meson: osd_afbcd: Add an exit callback to struct
       meson_afbcd_ops
     - [arm64,armhf] drm/bridge: Add missing pm_runtime_disable() in
       __dw_mipi_dsi_probe
     - [arm64] drm: bridge: adv7511: Fix ADV7535 HPD enablement
     - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
     - [arm64,armhf] drm/panfrost: Check for error num after setting mask
     - Bluetooth: hci_serdev: call init_rwsem() before p->open()
     - [armhf] mtd: rawnand: gpmi: fix controller timings setting
     - drm/edid: Don't clear formats if using deep color
     - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
     - drm/amd/display: Fix a NULL pointer dereference in
       amdgpu_dm_connector_add_common_modes()
     - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
     - ath9k_htc: fix uninit value bugs
     - RDMA/core: Set MR type in ib_reg_user_mr
     - [powerpc*] KVM: PPC: Fix vmx/vsx mixup in mmio emulation
     - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
     - i40e: respect metadata on XSK Rx to skb
     - [x86] ray_cs: Check ioremap return value
     - [powerpc*] KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
     - [powerpc*] perf: Don't use perf_hw_context for trace IMC PMU
     - [arm64,armhf] net: dsa: mv88e6xxx: Enable port policy support on 6097
     - [arm64] PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated
       bridge
     - [arm64,armhf] drm/bridge: dw-hdmi: use safe format when first in bridge
       chain
     - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
     - drm/amd/pm: enable pm sysfs write for one VF mode
     - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
     - IB/cma: Allow XRC INI QPs to set their local ACK timeout
     - dax: make sure inodes are flushed before destroy cache
     - iwlwifi: Fix -EIO error code that is never returned
     - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
     - [arm64] drm/msm/dp: populate connector of struct dp_panel
     - [arm64] drm/msm/dpu: add DSPP blocks teardown
     - [arm64] drm/msm/dpu: fix dp audio condition
     - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
     - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
     - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
     - scsi: pm8001: Fix le32 values handling in
       pm80xx_set_sas_protocol_timer_config()
     - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
     - scsi: pm8001: Fix NCQ NON DATA command task initialization
     - scsi: pm8001: Fix NCQ NON DATA command completion handling
     - scsi: pm8001: Fix abort all task initialization
     - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
     - drm/amd/display: Remove vupdate_int_entry definition
     - TOMOYO: fix __setup handlers return values
     - [arm64,armhf] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
     - [x86] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong
       false return
     - [arm64] scsi: hisi_sas: Change permission of parameter prot_mask
     - [arm64] bpf, arm64: Call build_prologue() first in first JIT pass
     - [arm64] bpf, arm64: Feed byte-offset into bpf line info
     - [arm64,armhf] gpu: host1x: Fix a memory leak in 'host1x_remove()'
     - [powerpc*] mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
     - [x86] KVM: x86: Fix emulation in writing cr8
     - [x86] KVM: x86/emulator: Defer not-present segment check in
       __load_segment_descriptor()
     - [x86] hv_balloon: rate-limit "Unhandled message" warning
     - [amd64] IB/hfi1: Allow larger MTU without AIP
     - PCI: Reduce warnings on possible RW1C corruption
     - [armhf] mfd: mc13xxx: Add check for mc13xxx_irq_request
     - [x86] platform/x86: huawei-wmi: check the return value of
       device_create_file()
     - vxcan: enable local echo for sent CAN frames
     - ath10k: Fix error handling in ath10k_setup_msa_resources
     - [mips*] pgalloc: fix memory leak caused by pgd_free()
     - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
     - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
     - bpf, sockmap: Fix more uncharged while msg has more_data
     - bpf, sockmap: Fix double uncharge the mem of sk_msg
     - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
     - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
     - can: isotp: support MSG_TRUNC flag when reading from socket
     - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
     - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
     - af_netlink: Fix shift out of bounds in group mask calculation
     - [arm64,armhf] i2c: meson: Fix wrong speed use from probe
     - PCI: Avoid broken MSI on SB600 USB devices
     - [arm64] net: bcmgenet: Use stronger register read/writes to assure
       ordering
     - tcp: ensure PMTU updates are processed during fastopen
     - openvswitch: always update flow key after nat
     - tipc: fix the timer expires after interval 100ms
     - [x86] mxser: fix xmit_buf leak in activate when LSR == 0xff
     - [armhf] fsi: aspeed: convert to devm_platform_ioremap_resource
     - [armhf] fsi: Aspeed: Fix a potential double free
     - soundwire: intel: fix wrong register name in intel_shim_wake
     - iio: mma8452: Fix probe failing when an i2c_device_id is used
     - [arm64,armhf] phy: dphy: Correct lpx parameter and its
       derivatives(ta_{get,go,sure})
     - [x86] serial: 8250_mid: Balance reference count for PCI DMA device
     - [x86] serial: 8250_lpss: Balance reference count for PCI DMA device
     - NFS: Use of mapping_set_error() results in spurious errors
     - serial: 8250: Fix race condition in RTS-after-send handling
     - NFS: Return valid errors from nfs2/3_decode_dirent()
     - [arm64] clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
     - [arm64] clk: qcom: clk-rcg2: Update the frac table for pixel clock
     - nvdimm/region: Fix default alignment for small regions
     - [armhf] clk: tegra: tegra124-emc: Fix missing put_device() call in
       emc_ensure_emc_driver
     - NFS: remove unneeded check in decode_devicenotify_args()
     - [arm64,armhf] pinctrl/rockchip: Add missing of_node_put() in
       rockchip_pinctrl_probe
     - [s390x] tty: hvc: fix return value of __setup handler
     - serial: 8250: fix XOFF/XON sending when DMA is used
     - driver core: dd: fix return value of __setup handler
     - jfs: fix divide error in dbNextAG
     - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
     - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
     - kdb: Fix the putarea helper function
     - clk: Initialize orphan req_rate
     - [amd64] xen: fix is_xen_pmu()
     - [arm64] net: enetc: report software timestamping via SO_TIMESTAMPING
     - [arm64] net: hns3: fix bug when PF set the duplicate MAC address for VFs
     - net: phy: broadcom: Fix brcm_fet_config_init()
     - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
     - [armhf] net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list
       iterator
     - fs: fd tables have to be multiples of BITS_PER_LONG
     - fs: fix fd table size alignment properly
     - LSM: general protection fault in legacy_parse_param
     - block, bfq: don't move oom_bfqq
     - selinux: use correct type for context length
     - selinux: allow FIOCLEX and FIONCLEX with policy capability
     - loop: use sysfs_emit() in the sysfs xxx show()
     - Fix incorrect type in assignment of ipv6 port for audit
     - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
     - bfq: fix use-after-free in bfq_dispatch_request
     - ACPICA: Avoid walking the ACPI Namespace if it is not there
     - Revert "Revert "block, bfq: honor already-setup queue merges""
     - ACPI/APEI: Limit printable size of BERT table data
     - PM: core: keep irq flags in device_pm_check_callbacks()
     - nvme-tcp: lockdep: annotate in-kernel sockets
     - [arm64] spi: tegra20: Use of_device_get_match_data()
     - ext4: correct cluster len and clusters changed accounting in
       ext4_mb_mark_bb
     - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
     - ext4: don't BUG if someone dirty pages without asking ext4 first
     - f2fs: fix to do sanity check on curseg->alloc_type
     - NFSD: Fix nfsd_breaker_owns_lease() return values
     - f2fs: compress: fix to print raw data size in error path of lz4
       decompression
     - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
     - [armel,armhf] ftrace: avoid redundant loads or clobbering IP
     - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
     - ASoC: soc-core: skip zero num_dai component in searching dai name
     - media: cx88-mpeg: clear interrupt status register before streaming video
     - uaccess: fix type mismatch warnings from access_ok()
     - media: Revert "media: em28xx: add missing em28xx_close_extension"
     - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
     - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
     - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
     - [x86] KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP
       MMU
     - [powerpc*] lib/sstep: Fix 'sthcx' instruction
     - [powerpc*] lib/sstep: Fix build errors with newer binutils
     - scsi: qla2xxx: Fix stuck session in gpdb
     - scsi: qla2xxx: Fix scheduling while atomic
     - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
     - scsi: qla2xxx: Fix warning for missing error code
     - scsi: qla2xxx: Fix device reconnect in loop topology
     - scsi: qla2xxx: Add devids and conditionals for 28xx
     - scsi: qla2xxx: Check for firmware dump already collected
     - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
     - scsi: qla2xxx: Fix disk failure to rediscover
     - scsi: qla2xxx: Fix incorrect reporting of task management failure
     - scsi: qla2xxx: Fix hang due to session stuck
     - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
     - scsi: qla2xxx: Fix N2N inconsistent PLOGI
     - scsi: qla2xxx: Reduce false trigger to login
     - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
     - [arm64] platform: chrome: Split trace include file
     - [x86] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't
       activated
     - KVM: Prevent module exit until all VMs are freed
     - [x86] KVM: x86: fix sending PV IPI
     - [x86] KVM: SVM: fix panic on out-of-bounds guest IRQ
     - [x86] ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
     - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
     - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
     - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
     - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
     - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
     - ubifs: Fix to add refcount once page is set private
     - ubifs: rename_whiteout: correct old_dir size computing
     - wireguard: queueing: use CFI-safe ptr_ring cleanup function
     - wireguard: socket: free skb in send6 when ipv6 is disabled
     - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
     - XArray: Fix xas_create_range() when multi-order entry present
     - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error
       path (CVE-2022-28389)
     - can: mcba_usb: properly check endpoint type
     - XArray: Update the LRU list in xas_split()
     - rtc: check if __rtc_read_time was successful
     - gfs2: Make sure FITRIM minlen is rounded up to fs block size
     - [arm64] net: hns3: fix software vlan talbe of vlan 0 inconsistent with
       hardware
     - rxrpc: Fix call timer start racing with call destruction
     - [arm64] mailbox: imx: fix wakeup failure from freeze mode
     - watch_queue: Free the page array when watch_queue is dismantled
     - pinctrl: pinconf-generic: Print arguments for bias-pull-*
     - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
     - [arm*] iop32x: offset IRQ numbers by 1
     - io_uring: fix memory leak of uid in files registration
     - [amd64,arm64] ACPI: CPPC: Avoid out of bounds access when parsing _CPC
       data
     - [arm64] platform/chrome: cros_ec_typec: Check for EC device
     - can: isotp: restore accidentally removed MSG_PEEK feature
     - proc: bootconfig: Add null pointer check
     - [x86] ASoC: soc-compress: Change the check for codec_dai
     - batman-adv: Check ptr for NULL before reducing its refcnt
     - mm/mmap: return 1 from stack_guard_gap __setup() handler
     - mm/memcontrol: return 1 from cgroup.memory __setup() handler
     - mm/usercopy: return 1 from hardened_usercopy __setup() handler
     - bpf: Adjust BPF stack helper functions to accommodate skip > 0
     - bpf: Fix comment for helper bpf_current_task_under_cgroup()
     - dt-bindings: mtd: nand-controller: Fix the reg property description
     - dt-bindings: mtd: nand-controller: Fix a comment in the examples
     - dt-bindings: spi: mxic: The interrupt property is not mandatory
     - [x86] ASoC: topology: Allow TLV control to be either read or write
     - docs: sysctl/kernel: add missing bit to panic_print
     - openvswitch: Fixed nd target mask field in the flow dump.
     - [x86] KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
       (CVE-2022-1158)
     - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28388)
     - coredump: Snapshot the vmas in do_coredump
     - coredump: Remove the WARN_ON in dump_vma_snapshot
     - coredump/elf: Pass coredump_params into fill_note_info
     - coredump: Use the vma snapshot in fill_files_note
     - [arm64] Do not defer reserve_crashkernel() for platforms with no DMA
       memory zones
     - [arm64] PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.111
     - ubifs: Rectify space amount budget for mkdir/tmpfile operations
     - gfs2: Check for active reservation in gfs2_release
     - gfs2: Fix gfs2_release for non-writers regression
     - gfs2: gfs2_setattr_size error path fix
     - [x86] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
     - [x86] KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
     - drm: Add orientation quirk for GPD Win Max
     - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
     - drm/amd/display: Add signal type check when verify stream backends same
     - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
     - ptp: replace snprintf with sysfs_emit
     - [armhf] ath11k: fix kernel panic during unload/load ath11k modules
     - ath11k: mhi: use mhi_sync_power_up()
     - bpf: Make dst_port field in struct bpf_sock 16-bit wide
     - scsi: mvsas: Replace snprintf() with sysfs_emit()
     - scsi: bfa: Replace snprintf() with sysfs_emit()
     - [arm64,armhf] power: supply: axp20x_battery: properly report current when
       discharging
     - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
     - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
     - ipv6: make mc_forwarding atomic
     - [powerpc*] Set crashkernel offset to mid of RMA region
     - drm/amdgpu: Fix recursive locking warning
     - [arm64] PCI: aardvark: Fix support for MSI interrupts
     - [arm64] iommu/arm-smmu-v3: fix event handling soft lockup
     - usb: ehci: add pci device support for Aspeed platforms
     - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
     - iwlwifi: mvm: Correctly set fragmented EBS
     - ipv4: Invalidate neighbour for broadcast address upon address addition
     - dm ioctl: prevent potential spectre v1 gadget
     - dm: requeue IO if mapping table not yet available
     - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
     - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
     - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
     - scsi: pm8001: Fix tag leaks on error
     - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
     - scsi: aha152x: Fix aha152x_setup() __setup handler return value
     - [arm64] scsi: hisi_sas: Free irq vectors in order for v3 HW
     - net/smc: correct settings of RMB window update limit
     - macvtap: advertise link netns via netlink
     - tuntap: add sanity checks about msg_controllen in sendmsg
     - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
     - Bluetooth: use memset avoid memory leaks
     - bnxt_en: Eliminate unintended link toggle during FW reset
     - [mps64el,mipsel] fix fortify panic when copying asm exception handlers
     - scsi: libfc: Fix use after free in fc_exch_abts_resp()
     - can: isotp: set default value for N_As to 50 micro seconds
     - net: account alternate interface name memory
     - net: limit altnames to 64k total
     - net: sfp: add 2500base-X quirk for Lantech SFP module
     - [armhf] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on
       omap5evm
     - Bluetooth: Fix use after free in hci_send_acl
     - netlabel: fix out-of-bounds memory accesses
     - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
     - init/main.c: return 1 from handled __setup() functions
     - minix: fix bug when opening a file with O_DIRECT
     - [arm*] staging: vchiq_core: handle NULL result of find_service_by_handle
     - [arm64,armhf] phy: amlogic: meson8b-usb2: Use dev_err_probe()
     - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
     - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
     - NFSv4: Protect the state recovery thread against direct reclaim
     - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
     - [armhf] clk: ti: Preserve node in ti_dt_clocks_register()
     - clk: Enforce that disjoints limits are invalid
     - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
     - SUNRPC/xprt: async tasks mustn't block waiting for memory
     - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
     - NFS: swap IO handling is slightly different for O_DIRECT IO
     - NFS: swap-out must always use STABLE writes.
     - [armhf] serial: samsung_tty: do not unlock port->lock for
       uart_write_wakeup()
     - virtio_console: eliminate anonymous module_init & module_exit
     - jfs: prevent NULL deref in diFree
     - SUNRPC: Fix socket waits for write buffer space
     - NFS: nfsiod should not block forever in mempool_alloc()
     - NFS: Avoid writeback threads getting stuck in mempool_alloc()
     - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
     - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
     - [x86] Drivers: hv: vmbus: Fix potential crash on module unload
     - Revert "NFSv4: Handle the special Linux file open access mode"
     - NFSv4: fix open failure with O_ACCMODE flag
     - ice: Clear default forwarding VSI during VSI release
     - net: ipv4: fix route with nexthop object delete warning
     - net: stmmac: Fix unset max_speed difference between DT and non-DT
       platforms
     - [armhf] drm/imx: imx-ldb: Check for null pointer after calling kmemdup
     - [armhf] drm/imx: Fix memory leak in imx_pd_connector_get_modes
     - sfc: Do not free an empty page_ring
     - RDMA/mlx5: Don't remove cache MRs when a delay is needed
     - [amd64] IB/rdmavt: add lock to call to rvt_error_qp to prevent a race
       condition
     - [arm64] dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
     - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
     - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
     - ipv6: Fix stats accounting in ip6_pkt_drop
     - ice: synchronize_rcu() when terminating rings
     - net: openvswitch: don't send internal clone attribute to the userspace.
     - net: openvswitch: fix leak of nested actions
     - rxrpc: fix a race in rxrpc_exit_net()
     - qede: confirm skb is allocated before using
     - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
     - drbd: Fix five use after free bugs in get_initial_state
     - io_uring: don't touch scm_fp_list after queueing skb
     - SUNRPC: Handle ENOMEM in call_transmit_status()
     - SUNRPC: Handle low memory situations in call_status()
     - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
     - [armhf] iommu/omap: Fix regression in probe for NULL pointer dereference
     - [arm64] Add part number for Arm Cortex-A78AE
     - [arm64] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
     - [arm64,armhf] mmc: mmci: stm32: correctly check all elements of sg list
     - lz4: fix LZ4_decompress_safe_partial read out of bound
     - mmmremap.c: avoid pointless invalidate_range_start/end on
       mremap(old_size=0)
     - mm/mempolicy: fix mpol_new leak in shared_policy_replace
     - io_uring: fix race between timeout flush and removal (CVE-2022-29582)
     - [x86] pm: Save the MSR validity status at context setup
     - [x86] speculation: Restore speculation related MSRs during S3 resume
     - btrfs: fix qgroup reserve overflow the qgroup limit
     - btrfs: prevent subvol with swapfile from being deleted
     - [arm64] patch_text: Fixup last cpu should be master
     - [amd64] RDMA/hfi1: Fix use-after-free bug for mm struct
     - gpio: Restrict usage of GPIO chip irq members before initialization
     - [arm64] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
     - [arm64,armhf] irqchip/gic-v3: Fix GICR_CTLR.RWP polling
     - drm/nouveau/pmu: Add missing callbacks for Tegra devices
     - mm: don't skip swap entry even if zap_details specified
     - cgroup: Use open-time credentials for process migraton perm checks
       (CVE-2021-4197)
     - [x86] Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
     - [arm64,armhf] irqchip/gic, gic-v3: Prevent GSI to SGI translations
     - [powerpc*] Fix virt_addr_valid() for 64-bit Book3E & 32-bit
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.112
     - [amd64] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
     - hamradio: defer 6pack kfree after unregister_netdev (CVE-2022-1195)
     - hamradio: remove needs_free_netdev to avoid UAF (CVE-2022-1195)
     - [arm64] cpuidle: PSCI: Move the `has_lpi` check to the beginning of the
       function
     - ACPI: processor idle: Check for architectural support for LPI
     - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
     - [arm64] drm/msm: Add missing put_task_struct() in debugfs path
     - SUNRPC: Fix the svc_deferred_event trace class
     - net/sched: flower: fix parsing of ethertype following VLAN header
     - veth: Ensure eth header is in skb's linear part
     - gpiolib: acpi: use correct format characters
     - net: mdio: Alphabetically sort header inclusion
     - net/sched: fix initialization order when updating chain 0 head
     - [arm64] net: dsa: felix: suppress -EPROBE_DEFER errors
     - [armhf] net: ethernet: stmmac: fix altr_tse_pcs function when using a
       fixed-link
     - net/sched: taprio: Check if socket flags are valid
     - cfg80211: hold bss_lock while updating nontrans_list
     - [arm64] drm/msm: Fix range size vs end confusion
     - [arm64] drm/msm/dsi: Use connector directly in
       msm_dsi_manager_connector_init()
     - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
     - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
     - scsi: pm80xx: Enable upper inbound, outbound queues
     - scsi: iscsi: Stop queueing during ep_disconnect
     - scsi: iscsi: Force immediate failure during shutdown
     - scsi: iscsi: Use system_unbound_wq for destroy_work
     - scsi: iscsi: Rel ref after iscsi_lookup_endpoint()
     - scsi: iscsi: Fix in-kernel conn failure handling
     - scsi: iscsi: Move iscsi_ep_disconnect()
     - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
     - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
     - sctp: Initialize daddr on peeled off socket
     - cifs: potential buffer overflow in handling symlinks
     - [arm64] net: bcmgenet: Revert "Use stronger register read/writes to assure
       ordering"
     - drm/amd: Add USBC connector ID
     - btrfs: fix fallocate to use file_modified to update permissions
       consistently
     - btrfs: do not warn for free space inode in cow_file_range
     - drm/amd/display: fix audio format not updated after edid updated
     - drm/amd/display: FEC check in timing validation
     - drm/amd/display: Update VTEM Infopacket definition
     - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
     - drm/amdgpu/vcn: improve vcn dpg stop procedure
     - [x86] Drivers: hv: vmbus: Prevent load re-ordering when reading ring
       buffer
     - scsi: target: tcmu: Fix possible page UAF
     - scsi: lpfc: Fix queue failures when recovering from PCI parity error
     - [powerpc*] scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
     - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
     - [armhf] gpu: ipu-v3: Fix dev_dbg frequency output
     - [arm64] alternatives: mark patch_alternative() as `noinstr`
     - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
     - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
     - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
     - drm/amd/display: Revert FEC check in validation
     - drm/amd/display: Fix allocate_mst_payload assert on resume
     - scsi: mvsas: Add PCI ID of RocketRaid 2640
     - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
     - drivers: net: slip: fix NPD bug in sl_tx_timeout()
     - mm, page_alloc: fix build_zonerefs_node()
     - mm: fix unexpected zeroed page mapping with zram swap
     - [x86] KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
     - ath9k: Properly clear TX status area before reporting to mac80211
     - ath9k: Fix usage of driver-private space in tx_info
     - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
     - btrfs: mark resumed async balance as writing
     - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
     - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
     - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
     - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
     - ipv6: fix panic when forwarding a pkt with no in6 dev
     - drm/amd/display: don't ignore alpha property on pre-multiplied mode
     - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
     - genirq/affinity: Consider that CPUs on nodes can be unbalanced
     - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
     - dm integrity: fix memory corruption when tag_size is less than digest size
     - smp: Fix offline cpu check in flush_smp_call_function_queue()
     - timers: Fix warning condition in __run_timers()
     - dma-direct: avoid redundant memory sync for swiotlb
     - scsi: iscsi: Fix endpoint reuse regression
     - scsi: iscsi: Fix unbound endpoint error handling
     - ax25: add refcount in ax25_dev to avoid UAF bugs (CVE-2022-1204)
     - ax25: fix reference count leaks of ax25_dev (CVE-2022-1204)
     - ax25: fix UAF bugs of net_device caused by rebinding operation
       (CVE-2022-1204)
     - ax25: Fix refcount leaks caused by ax25_cb_del() (CVE-2022-1204)
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect (CVE-2022-1199)
     - ax25: Fix NULL pointer dereferences in ax25 timers (CVE-2022-1205)
     - ax25: Fix UAF bugs in ax25 timers (CVE-2022-1205)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.113
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNP
     - dm: fix mempool NULL pointer race when completing IO
     - [armhf] dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - esp: limit skb_page_frag_refill use to a single page
     - igc: Fix infinite loop in release_swfw_sync
     - igc: Fix BUG: scheduling while atomic
     - rxrpc: Restore removed timer deletion
     - net/smc: Fix sock leak when release after smc_shutdown()
     - net/packet: fix packet_sock xmit return value checking
     - ip6_gre: Avoid updating tunnel->tun_hlen in __gre6_xmit()
     - ip6_gre: Fix skb_under_panic in __gre6_xmit()
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using
       netdev_master_upper_dev_get_rcu
     - ipv6: make ip6_rt_gc_expire an atomic_t
     - netlink: reset network and mac headers in netlink_dump()
     - net: stmmac: Use readl_poll_timeout_atomic() in atomic state
     - [arm64] mm: Remove [PUD|PMD]_TABLE_BIT from [pud|pmd]_bad()
     - [arm64] mm: fix p?d_leaf()
     - [x86] platform/x86: samsung-laptop: Fix an unsigned comparison which can
       never be negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - [amd64,arm64] net: atlantic: Avoid out-of-bounds indexing
     - mt76: Fix undefined behavior due to shift overflowing the constant
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
       constant
     - [arm64] drm/msm/mdp5: check the return of kzalloc()
     - [arm64] net: macb: Restart tx only if queue pointer is lagging
     - scsi: qedi: Fix failed disconnect handling
     - stat: fix inconsistency between struct stat and struct compat_stat
     - nvme: add a quirk to disable namespace identifiers
     - nvme-pci: disable namespace identifiers for Qemu controllers
     - mm, hugetlb: allow for "high" userspace addresses
     - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex
       cleanup
     - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - [amd64,arm64] net: atlantic: invert deep par in pm functions, preventing
       null derefs
     - openvswitch: fix OOB access in reserve_sfa_size()
     - gpio: Request interrupts after IRQ is initialized
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - [arm*] arm_pmu: Validate single/group leader events
     - sched/pelt: Fix attach_entity_load_avg() corner case
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not
       initialised
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Initialise the bridge in
       prepare
     - [powerpc*] KVM: PPC: Fix TCE handling for VFIO
     - [arm*] drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync()
       usage
     - [powerpc*] perf: Fix power9 event alternatives
     - ext4: fix fallocate to use file_modified to update permissions
       consistently
     - ext4: fix symlink file size not match to file content
     - ext4: fix use-after-free in ext4_search_dir
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
     - ext4, doc: fix incorrect h_reserved size
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - can: isotp: stop timeout monitoring when no first frame was sent
     - jbd2: fix a potential race while discarding reserved buffers after an
       abort
     - block/compat_ioctl: fix range check in BLKGETSIZE
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 14
   * [rt] Drop "tcp: Remove superfluous BH-disable around"
   * [rt] Update "tracing: Merge irqflags + preempt counter." for upstream
     changes in 5.10.113
   * [x86] pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
     (Closes: #1006346)
   * floppy: disable FDRAWCMD by default

linux-signed-i386 (5.10.127+1) bullseye; urgency=medium
 .
   * Sign kernel from linux 5.10.127-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.121
     - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop
     - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
     - ALSA: usb-audio: Cancel pending work at closing a MIDI substream
     - USB: serial: option: add Quectel BG95 modem
     - USB: new quirk for Dell Gen 2 devices
     - usb: dwc3: gadget: Move null pinter check to proper place
     - usb: core: hcd: Add support for deferring roothub registration
     - cifs: when extending a file with falloc we should make files not-sparse
     - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI
     - Fonts: Make font size unsigned in font_desc
     - [x86] MCE/AMD: Fix memory leak when threshold_create_bank() fails
     - [w86] perf/x86/intel: Fix event constraints for ICL
     - ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
     - ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
     - btrfs: add "0x" prefix for unsupported optional features
     - btrfs: repair super block num_devices automatically
     - [amd64] iommu/vt-d: Add RPLS to quirk list to skip TE disabling
     - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
     - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
     - b43legacy: Fix assigning negative value to unsigned variable
     - b43: Fix assigning negative value to unsigned variable
     - ipw2x00: Fix potential NULL dereference in libipw_xmit()
     - ipv6: fix locking issues with loops over idev->addr_list
     - fbcon: Consistently protect deferred_takeover with console_lock()
     - [x86] platform/uv: Update TSC sync state for UV5
     - ACPICA: Avoid cache flush inside virtual machines
     - drm/komeda: return early if drm_universal_plane_init() fails.
     - rcu-tasks: Fix race in schedule and flush work
     - rcu: Make TASKS_RUDE_RCU select IRQ_WORK
     - sfc: ef10: Fix assigning negative value to unsigned variable
     - ALSA: jack: Access input_dev under mutex
     - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA
       direction
     - drm/amd/pm: fix double free in si_parse_power_table()
     - ath9k: fix QCA9561 PA bias level
     - media: venus: hfi: avoid null dereference in deinit
     - media: pci: cx23885: Fix the error handling in cx23885_initdev()
     - media: cx25821: Fix the warning when removing the module
     - md/bitmap: don't set sb values if can't pass sanity check
     - mmc: jz4740: Apply DMA engine limits to maximum segment size
     - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit
     - scsi: megaraid: Fix error check return value of register_chrdev()
     - scsi: ufs: Use pm_runtime_resume_and_get() instead of
       pm_runtime_get_sync()
     - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp()
     - ath11k: disable spectral scan during spectral deinit
     - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408
     - drm/plane: Move range check for format_count earlier
     - drm/amd/pm: fix the compile warning
     - ath10k: skip ath10k_halt during suspend for driver state RESTARTING
     - [arm64] compat: Do not treat syscall number as ESR_ELx for a bad syscall
     - drm: msm: fix error check return value of irq_of_parse_and_map()
     - ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
     - net/mlx5: fs, delete the FTE when there are no rules attached to it
     - ASoC: dapm: Don't fold register value changes into notifications
     - mlxsw: spectrum_dcb: Do not warn about priority changes
     - mlxsw: Treat LLDP packets as control
     - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo
     - HID: bigben: fix slab-out-of-bounds Write in bigben_probe
     - ASoC: tscs454: Add endianness flag in snd_soc_component_driver
     - net: remove two BUG() from skb_checksum_help()
     - [s390x] preempt: disable __preempt_count_add() optimization for
       PROFILE_ALL_BRANCHES
     - perf/amd/ibs: Cascade pmu init functions' return value
     - spi: stm32-qspi: Fix wait_cmd timeout in APM mode
     - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
     - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default
     - ipmi:ssif: Check for NULL msg when handling events and messages
     - ipmi: Fix pr_fmt to avoid compilation issues
     - rtlwifi: Use pr_warn instead of WARN_ONCE
     - media: rga: fix possible memory leak in rga_probe
     - media: coda: limit frame interval enumeration to supported encoder frame
       sizes
     - media: imon: reorganize serialization
     - media: cec-adap.c: fix is_configuring state
     - nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
     - ASoC: rt5645: Fix errorenous cleanup order
     - nbd: Fix hung on disconnect request if socket is closed before
     - net: phy: micrel: Allow probing without .driver_data
     - media: exynos4-is: Fix compile warning
     - ASoC: max98357a: remove dependency on GPIOLIB
     - ASoC: rt1015p: remove dependency on GPIOLIB
     - can: mcp251xfd: silence clang's -Wunaligned-access warning
     - [x86] microcode: Add explicit CPU vendor dependency
     - rxrpc: Return an error to sendmsg if call failed
     - rxrpc, afs: Fix selection of abort codes
     - eth: tg3: silence the GCC 12 array-bounds warning
     - gfs2: use i_lock spin_lock for inode qadata
     - IB/rdmavt: add missing locks in rvt_ruc_loopback
     - [arm64] dts: qcom: msm8994: Fix BLSP[12]_DMA channels count
     - PM / devfreq: rk3399_dmc: Disable edev on remove()
     - crypto: ccree - use fine grained DMA mapping dir
     - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc
     - fs: jfs: fix possible NULL pointer dereference in dbFree()
     - [powerpc*] fadump: Fix fadump to work with a different endian capture
       kernel
     - fat: add ratelimit to fat*_ent_bread()
     - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - ARM: versatile: Add missing of_node_put in dcscb_init
     - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
     - ARM: hisi: Add missing of_node_put after of_find_compatible_node
     - PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
     - tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
     - [powerpc*] powernv/vas: Assign real address to rx_fifo in vas_rx_win_attr
     - [powerpc*] xics: fix refcount leak in icp_opal_init()
     - [powerpc*] powernv: fix missing of_node_put in uv_init()
     - macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
     - [powerpc*] iommu: Add missing of_node_put in iommu_init_early_dart
     - [amd64] RDMA/hfi1: Prevent panic when SDMA is disabled
     - drm: fix EDID struct for old ARM OABI format
     - dt-bindings: display: sitronix, st7735r: Fix backlight in example
     - ath11k: acquire ab->base_lock in unassign when finding the peer by addr
     - ath9k: fix ar9003_get_eepmisc
     - drm/edid: fix invalid EDID extension block filtering
     - drm/bridge: adv7511: clean up CEC adapter when probe fails
     - spi: qcom-qspi: Add minItems to interconnect-names
     - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
     - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
     - [x86] delay: Fix the wrong asm constraint in delay_loop()
     - drm/ingenic: Reset pixclock rate when parent clock rate changes
     - drm/mediatek: Fix mtk_cec_mask()
     - [arm*] drm/vc4: hvs: Reset muxes at probe time
     - [arm*] drm/vc4: txp: Don't set TXP_VSTART_AT_EOF
     - [arm*] drm/vc4: txp: Force alpha to be 0xff if it's disabled
     - bpf: Fix excessive memory allocation in stack_map_alloc()
     - nl80211: show SSID for P2P_GO interfaces
     - drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
     - drm: mali-dp: potential dereference of null pointer
     - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
     - scftorture: Fix distribution of short handler delays
     - net: dsa: mt7530: 1G can also support 1000BASE-X link mode
     - NFC: NULL out the dev->rfkill to prevent UAF
     - efi: Add missing prototype for efi_capsule_setup_info
     - target: remove an incorrect unmap zeroes data deduction
     - drbd: fix duplicate array initializer
     - EDAC/dmc520: Don't print an error for each unconfigured interrupt line
     - mtd: rawnand: denali: Use managed device resources
     - HID: hid-led: fix maximum brightness for Dream Cheeky
     - HID: elan: Fix potential double free in elan_input_configured
     - drm/bridge: Fix error handling in analogix_dp_probe
     - sched/fair: Fix cfs_rq_clock_pelt() for throttled cfs_rq
     - spi: img-spfi: Fix pm_runtime_get_sync() error checking
     - cpufreq: Fix possible race in cpufreq online error path
     - ath9k_htc: fix potential out of bounds access with invalid
       rxstatus->rs_keyix
     - media: hantro: Empty encoder capture buffers by default
     - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01
     - ALSA: pcm: Check for null pointer of pointer substream before
       dereferencing it
     - inotify: show inotify mask flags in proc fdinfo
     - fsnotify: fix wrong lockdep annotations
     - of: overlay: do not break notify on NOTIFY_{OK|STOP}
     - drm/msm/dpu: adjust display_v_end for eDP and DP
     - scsi: ufs: qcom: Fix ufs_qcom_resume()
     - scsi: ufs: core: Exclude UECxx from SFR dump list
     - mtd: spi-nor: core: Check written SR value in
       spi_nor_write_16bit_sr_and_check()
     - [x86] pm: Fix false positive kmemleak report in msr_build_context()
     - mtd: rawnand: cadence: fix possible null-ptr-deref in
       cadence_nand_dt_probe()
     - [x86] speculation: Add missing prototype for unpriv_ebpf_notify()
     - ASoC: rk3328: fix disabling mclk on pclk probe failure
     - perf tools: Add missing headers needed by util/data.h
     - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory
       free during pm runtime resume
     - drm/msm/dp: stop event kernel thread when DP unbind
     - drm/msm/dp: fix error check return value of irq_of_parse_and_map()
     - drm/msm/dsi: fix error checks and return values for DSI xmit functions
     - drm/msm/hdmi: check return value after calling
       platform_get_resource_byname()
     - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
     - drm/msm: add missing include to msm_drv.c
     - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H
     - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
     - perf tools: Use Python devtools for version autodetection rather than
       runtime
     - virtio_blk: fix the discard_granularity and discard_alignment queue limits
     - [x86] Fix return value of __setup handlers
     - irqchip/exiu: Fix acknowledgment of edge triggered interrupts
     - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
     - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value
     - [x86] mm: Cleanup the control_va_addr_alignment() __setup handler
     - [arm64] fix types in copy_highpage()
     - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET
     - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop()
     - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is
       detected
     - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is
       detected
     - drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
     - media: uvcvideo: Fix missing check to determine if element is found in
       list
     - iomap: iomap_write_failed fix
     - spi: spi-fsl-qspi: check return value after calling
       platform_get_resource_byname()
     - Revert "cpufreq: Fix possible race in cpufreq online error path"
     - regulator: qcom_smd: Fix up PM8950 regulator configuration
     - perf/amd/ibs: Use interrupt regs ip for stack unwinding
     - ath11k: Don't check arvif->is_started before sending management frames
     - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe
     - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
     - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
     - ASoC: samsung: Use dev_err_probe() helper
     - ASoC: samsung: Fix refcount leak in aries_audio_probe
     - scripts/faddr2line: Fix overlapping text section failures
     - media: aspeed: Fix an error handling path in aspeed_video_probe()
     - media: exynos4-is: Fix PM disable depth imbalance in fimc_is_probe
     - media: st-delta: Fix PM disable depth imbalance in delta_probe
     - media: exynos4-is: Change clk_disable to clk_disable_unprepare
     - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
     - media: vsp1: Fix offset calculation for plane cropping
     - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
     - Bluetooth: Interleave with allowlist scan
     - Bluetooth: L2CAP: Rudimentary typo fixes
     - Bluetooth: LL privacy allow RPA
     - Bluetooth: use inclusive language in HCI role comments
     - Bluetooth: use inclusive language when filtering devices
     - Bluetooth: use hdev lock for accept_list and reject_list in conn req
     - nvme: set dma alignment to dword
     - lsm,selinux: pass flowi_common instead of flowi to the LSM hooks
     - sctp: read sk->sk_bound_dev_if once in sctp_rcv()
     - net: hinic: add missing destroy_workqueue in hinic_pf_to_mgmt_init
     - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*
     - media: ov7670: remove ov7670_power_off from ov7670_remove
     - media: staging: media: rkvdec: Make use of the helper function
       devm_platform_ioremap_resource()
     - media: rkvdec: h264: Fix dpb_valid implementation
     - media: rkvdec: h264: Fix bit depth wrap in pps packet
     - ext4: reject the 'commit' option on ext2 filesystems
     - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init
     - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set()
     - [x86] sev: Annotate stack change in the #VC handler
     - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path
     - [x86] drm/i915: Fix CFI violation with show_dynamic_id()
     - thermal/drivers/bcm2711: Don't clamp temperature at zero
     - thermal/drivers/broadcom: Fix potential NULL dereference in
       sr_thermal_probe
     - thermal/drivers/core: Use a char pointer for the cooling device name
     - thermal/core: Fix memory leak in __thermal_cooling_device_register()
     - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe
     - ASoC: wm2000: fix missing clk_disable_unprepare() on error in
       wm2000_anc_transition()
     - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
     - ASoC: max98090: Move check for invalid values before casting in
       max98090_put_enab_tlv()
     - net: stmmac: selftests: Use kcalloc() instead of kzalloc()
     - net: stmmac: fix out-of-bounds access in a selftest
     - hv_netvsc: Fix potential dereference of NULL pointer
     - rxrpc: Fix listen() setting the bar too high for the prealloc rings
     - rxrpc: Don't try to resend the request if we're receiving the reply
     - rxrpc: Fix overlapping ACK accounting
     - rxrpc: Don't let ack.previousPacket regress
     - rxrpc: Fix decision on when to generate an IDLE ACK
     - net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc()
     - hinic: Avoid some over memory allocation
     - net/smc: postpone sk_refcnt increment in connect()
     - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399
     - memory: samsung: exynos5422-dmc: Avoid some over memory allocation
     - ARM: dts: suniv: F1C100: fix watchdog compatible
     - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
     - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
     - PCI: cadence: Fix find_first_zero_bit() limit
     - PCI: rockchip: Fix find_first_zero_bit() limit
     - PCI: dwc: Fix setting error return on MSI DMA mapping failure
     - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks
     - soc: qcom: llcc: Add MODULE_DEVICE_TABLE()
     - [x86] KVM: nVMX: Leave most VM-Exit info fields unmodified on failed
       VM-Entry
     - [x86] KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple
       fault
     - platform/chrome: cros_ec: fix error handling in cros_ec_register()
     - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing
     - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls
     - can: xilinx_can: mark bit timing constants as const
     - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96
     - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
     - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C
     - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED
     - ARM: dts: bcm2835-rpi-b: Fix GPIO line names
     - misc: ocxl: fix possible double free in ocxl_file_register_afu
     - crypto: marvell/cesa - ECB does not IV
     - gpiolib: of: Introduce hook for missing gpio-ranges
     - pinctrl: bcm2835: implement hook for missing gpio-ranges
     - arm: mediatek: select arch timer for mt7629
     - powerpc/fadump: fix PT_LOAD segment for boot memory area
     - mfd: ipaq-micro: Fix error check return value of platform_get_irq()
     - scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
     - firmware: arm_scmi: Fix list protocols enumeration in the base protocol
     - nvdimm: Fix firmware activation deadlock scenarios
     - nvdimm: Allow overwrite in the presence of disabled dimms
     - pinctrl: mvebu: Fix irq_of_parse_and_map() return value
     - drivers/base/node.c: fix compaction sysfs file leak
     - dax: fix cache flush on PMD-mapped pages
     - drivers/base/memory: fix an unlikely reference counting issue in
       __add_memory_block()
     - powerpc/8xx: export 'cpm_setbrg' for modules
     - pinctrl: renesas: core: Fix possible null-ptr-deref in
       sh_pfc_map_resources()
     - powerpc/idle: Fix return value of __setup() handler
     - powerpc/4xx/cpm: Fix return value of __setup() handler
     - ASoC: atmel-pdmic: Remove endianness flag on pdmic component
     - ASoC: atmel-classd: Remove endianness flag on class d component
     - proc: fix dentry/inode overinstantiating under /proc/${pid}/net
     - ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
     - PCI: imx6: Fix PERST# start-up sequence
     - tty: fix deadlock caused by calling printk() under tty_port->lock
     - crypto: sun8i-ss - rework handling of IV
     - crypto: sun8i-ss - handle zero sized sg
     - crypto: cryptd - Protect per-CPU resource by disabling BH.
     - Input: sparcspkr - fix refcount leak in bbc_beep_probe
     - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits
     - hwrng: omap3-rom - fix using wrong clk_disable() in
       omap_rom_rng_runtime_resume()
     - [powerpc*] 64: Only WARN if __pa()/__va() called with bad addresses
     - [powerpc*] perf: Fix the threshold compare group constraint for power9
     - macintosh: via-pmu and via-cuda need RTC_LIB
     - powerpc/fsl_rio: Fix refcount leak in fsl_rio_setup
     - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()
     - mailbox: forward the hrtimer if not queued and under a lock
     - [amd64] RDMA/hfi1: Prevent use of lock before it is initialized
     - Input: stmfts - do not leave device disabled in stmfts_input_open
     - OPP: call of_node_put() on error path in _bandwidth_supported()
     - f2fs: fix dereference of stale list iterator after loop body
     - iommu/mediatek: Add list_del in mtk_iommu_remove
     - i2c: at91: use dma safe buffers
     - cpufreq: mediatek: add missing platform_driver_unregister() on error in
       mtk_cpufreq_driver_init
     - cpufreq: mediatek: Use module_init and add module_exit
     - cpufreq: mediatek: Unregister platform device on exit
     - [mips*] Loongson: Use hwmon_device_register_with_groups() to register
       hwmon
     - i2c: at91: Initialize dma_buf in at91_twi_xfer()
     - dmaengine: idxd: Fix the error handling path in idxd_cdev_register()
     - NFS: Do not report EINTR/ERESTARTSYS as mapping errors
     - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS
     - NFS: Do not report flush errors in nfs_write_end()
     - NFS: Don't report errors from nfs_pageio_complete() more than once
     - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout
     - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
     - dmaengine: stm32-mdma: remove GISR1 register
     - dmaengine: stm32-mdma: rework interrupt handler
     - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler()
     - iommu/amd: Increase timeout waiting for GA log enablement
     - i2c: npcm: Fix timeout calculation
     - i2c: npcm: Correct register access width
     - i2c: npcm: Handle spurious interrupts
     - i2c: rcar: fix PM ref counts in probe error paths
     - perf c2c: Use stdio interface if slang is not supported
     - perf jevents: Fix event syntax error caused by ExtSel
     - f2fs: fix to avoid f2fs_bug_on() in dec_valid_node_count()
     - f2fs: fix to do sanity check on block address in f2fs_do_zero_range()
     - f2fs: fix to clear dirty inode in f2fs_evict_inode()
     - f2fs: fix deadloop in foreground GC
     - f2fs: don't need inode lock for system hidden quota
     - f2fs: fix to do sanity check on total_data_blocks
     - f2fs: fix fallocate to use file_modified to update permissions
       consistently
     - f2fs: fix to do sanity check for inline inode
     - wifi: mac80211: fix use-after-free in chanctx code
     - iwlwifi: mvm: fix assert 1F04 upon reconfig
     - fs-writeback: writeback_sb_inodes：Recalculate 'wrote' according skipped
       pages
     - efi: Do not import certificates from UEFI Secure Boot for T2 Macs
     - bfq: Split shared queues on move between cgroups
     - bfq: Update cgroup information before merging bio
     - bfq: Track whether bfq_group is still online
     - ext4: fix use-after-free in ext4_rename_dir_prepare
     - ext4: fix warning in ext4_handle_inode_extension
     - ext4: fix bug_on in ext4_writepages
     - ext4: filter out EXT4_FC_REPLAY from on-disk superblock field s_state
     - ext4: fix bug_on in __es_tree_search
     - ext4: verify dir block before splitting it (CVE-2022-1184)
     - ext4: avoid cycles in directory h-tree (CVE-2022-1184)
     - ACPI: property: Release subnode properties with data nodes
     - tracing: Fix potential double free in create_var_ref()
     - PCI/PM: Fix bridge_d3_blacklist[] Elo i2 overwrite of Gigabyte X299
     - PCI: qcom: Fix runtime PM imbalance on probe errors
     - PCI: qcom: Fix unbalanced PHY init on probe errors
     - mm, compaction: fast_find_migrateblock() should return pfn in the target
       zone
     - [s390x] perf: obtain sie_block from the right address
     - dlm: fix plock invalid read
     - dlm: fix missing lkb refcount handling
     - ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock
     - scsi: dc395x: Fix a missing check on list iterator
     - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
     - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour.
     - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem
     - drm/nouveau/clk: Fix an incorrect NULL check on list iterator
     - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator
     - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX
     - [x86] drm/i915/dsi: fix VBT send packet port selection for ICL+
     - md: fix an incorrect NULL check in does_sb_need_changing
     - md: fix an incorrect NULL check in md_reload_sb
     - mtd: cfi_cmdset_0002: Move and rename
       chip_check/chip_ready/chip_good_for_write
     - mtd: cfi_cmdset_0002: Use chip_ready() for write on S29GL064N
     - media: coda: Fix reported H264 profile
     - media: coda: Add more H264 levels for CODA960
     - [amd64] RDMA/hfi1: Fix potential integer multiplication overflow errors
     - csky: patch_text: Fixup last cpu should be master
     - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375,
       A38x, A39x
     - irqchip: irq-xtensa-mx: fix initial IRQ affinity
     - cfg80211: declare MODULE_FIRMWARE for regulatory.db
     - mac80211: upgrade passive scan to active scan on DFS channels after beacon
       rx
     - um: chan_user: Fix winch_tramp() return value
     - um: Fix out-of-bounds read in LDT setup
     - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add]
     - ftrace: Clean up hash direct_functions on register failures
     - iommu/msm: Fix an incorrect NULL check on list iterator
     - nodemask.h: fix compilation error with GCC12
     - hugetlb: fix huge_pmd_unshare address update
     - xtensa/simdisk: fix proc_read_simdisk()
     - rtl818x: Prevent using not initialized queues
     - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
     - carl9170: tx: fix an incorrect use of list iterator
     - stm: ltdc: fix two incorrect NULL checks on list iterator
     - bcache: improve multithreaded bch_btree_check()
     - bcache: improve multithreaded bch_sectors_dirty_init()
     - bcache: remove incremental dirty sector counting for
       bch_sectors_dirty_init()
     - bcache: avoid journal no-space deadlock by reserving 1 journal bucket
     - serial: pch: don't overwrite xmit->buf[0] by x_char
     - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
     - gma500: fix an incorrect NULL check on list iterator
     - arm64: dts: qcom: ipq8074: fix the sleep clock frequency
     - phy: qcom-qmp: fix struct clk leak on probe errors
     - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries
     - ARM: pxa: maybe fix gpio lookup tables
     - SMB3: EBADF/EIO errors in rename/open caused by race condition in
       smb2_compound_op
     - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0
     - dt-bindings: gpio: altera: correct interrupt-cells
     - vdpasim: allow to enable a vq repeatedly
     - blk-iolatency: Fix inflight count imbalances and IO hangs on offline
     - coresight: core: Fix coresight device probe failure issue
     - phy: qcom-qmp: fix reset-controller leak on probe errors
     - net: ipa: fix page free in ipa_endpoint_trans_release()
     - net: ipa: fix page free in ipa_endpoint_replenish_one()
     - xfs: set inode size after creating symlink
     - xfs: sync lazy sb accounting on quiesce of read-only mounts
     - xfs: fix chown leaking delalloc quota blocks when fssetxattr fails
     - xfs: fix incorrect root dquot corruption error when switching
       group/project quota types
     - xfs: restore shutdown check in mapped write fault path
     - xfs: force log and push AIL to clear pinned inodes when aborting mount
     - xfs: consider shutdown in bmapbt cursor delete assert
     - xfs: assert in xfs_btree_del_cursor should take into account error
     - kseltest/cgroup: Make test_stress.sh work if run interactively
     - thermal/core: fix a UAF bug in __thermal_cooling_device_register()
     - thermal/core: Fix memory leak in the error path
     - bfq: Avoid merging queues with different parents
     - bfq: Drop pointless unlock-lock pair
     - bfq: Remove pointless bfq_init_rq() calls
     - bfq: Get rid of __bio_blkcg() usage
     - bfq: Make sure bfqg for which we are queueing requests is online
     - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq
     - Revert "random: use static branch for crng_ready()"
     - RDMA/rxe: Generate a completion for unsupported/invalid opcode
     - [mips*] IP27: Remove incorrect `cpu_has_fpu' override
     - [mips*] IP30: Remove incorrect `cpu_has_fpu' override
     - ext4: only allow test_dummy_encryption when supported
     - md: bcache: check the return value of kzalloc() in
       detached_dev_do_request()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.122
     - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
     - staging: greybus: codecs: fix type confusion of list iterator variable
     - iio: adc: ad7124: Remove shift from scan_type
     - tty: goldfish: Use tty_port_destroy() to destroy port
     - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
     - tty: n_tty: Restore EOF push handling behavior
     - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id
       and ida_simple_get
     - usb: usbip: fix a refcount leak in stub_probe()
     - usb: usbip: add missing device lock on tweak configuration cmd
     - USB: storage: karma: fix rio_karma_init return
     - usb: musb: Fix missing of_node_put() in omap2430_probe
     - staging: fieldbus: Fix the error handling path in
       anybuss_host_common_probe()
     - pwm: lp3943: Fix duty calculation in case period was clamped
     - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
     - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
     - misc: fastrpc: fix an incorrect NULL check on list iterator
     - firmware: stratix10-svc: fix a missing check on list iterator
     - usb: typec: mux: Check dev_set_name() return value
     - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
     - iio: proximity: vl53l0x: Fix return value check of
       wait_for_completion_timeout
     - iio: adc: sc27xx: fix read big scale voltage not right
     - iio: adc: sc27xx: Fine tune the scale calibration values
     - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
     - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
     - serial: sifive: Report actual baud base rather than fixed 115200
     - coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier
     - extcon: ptn5150: Add queue work sync before driver release
     - soc: rockchip: Fix refcount leak in rockchip_grf_init
     - rtc: mt6397: check return value after calling platform_get_resource()
     - serial: meson: acquire port->lock in startup()
     - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485
     - serial: digicolor-usart: Don't allow CS5-6
     - serial: rda-uart: Don't allow CS5-6
     - serial: txx9: Don't allow CS5-6
     - serial: sh-sci: Don't allow CS5-6
     - serial: sifive: Sanitize CSIZE and c_iflag
     - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7
     - serial: stm32-usart: Correct CSIZE, bits, and parity
     - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
     - bus: ti-sysc: Fix warnings for unbind for serial
     - driver: base: fix UAF when driver_attach failed
     - driver core: fix deadlock in __device_attach
     - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking
     - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe
     - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition
     - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value
     - [s390x] crypto: fix scatterwalk_unmap() callers in AES-GCM
     - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog
     - net: ethernet: mtk_eth_soc: out of bounds read in
       mtk_hwlro_get_fdir_entry()
     - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks
     - net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
     - modpost: fix removing numeric suffixes
     - jffs2: fix memory leak in jffs2_do_fill_super
     - ubi: fastmap: Fix high cpu usage of ubi_bgt by making sure wl_pool not
       empty
     - ubi: ubi_create_volume: Fix use-after-free when volume creation failed
     - bpf: Fix probe read error in ___bpf_prog_run()
     - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct
       smc_wr_tx_pend_priv *"
     - nfp: only report pause frame configuration for physical device
     - sfc: fix considering that all channels have TX queues
     - sfc: fix wrong tx channel offset with efx_separate_tx_channels
     - net/mlx5: Don't use already freed action pointer
     - net/mlx5: correct ECE offset in query qp output
     - net/mlx5e: Update netdev features after changing XDP state
     - net: sched: add barrier to fix packet stuck problem for lockless qdisc
     - tcp: tcp_rtx_synack() can be called from process context
     - gpio: pca953x: use the correct register address to do regcache sync
     - afs: Fix infinite loop found by xfstest generic/676
     - scsi: sd: Fix potential NULL pointer dereference
     - tipc: check attribute length for bearer name
     - driver core: Fix wait_for_device_probe() & deferred_probe_timeout
       interaction
     - perf c2c: Fix sorting in percent_rmt_hitm_cmp()
     - dmaengine: idxd: set DMA_INTERRUPT cap bit
     - mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
     - bootconfig: Make the bootconfig.o as a normal object file
     - tracing: Fix sleeping function called from invalid context on RT kernel
     - tracing: Avoid adding tracer option before update_tracer_options
     - iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe()
     - iommu/arm-smmu-v3: check return value after calling
       platform_get_resource()
     - f2fs: remove WARN_ON in f2fs_is_valid_blkaddr
     - i2c: cadence: Increase timeout per message if necessary
     - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type
     - NFSv4: Don't hold the layoutget locks across multiple RPC calls
     - video: fbdev: hyperv_fb: Allow resolutions with size > 64 MB for Gen1
     - video: fbdev: pxa3xx-gcu: release the resources correctly in
       pxa3xx_gcu_probe/remove()
     - xprtrdma: treat all calls not a bcall when bc_serv is NULL
     - netfilter: nat: really support inet nat without l3 address
     - netfilter: nf_tables: delete flowtable hooks via transaction list
     - powerpc/kasan: Force thread size increase with KASAN
     - netfilter: nf_tables: always initialize flowtable hook list in transaction
     - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe
     - netfilter: nf_tables: release new hooks on unsupported flowtable flags
     - netfilter: nf_tables: memleak flow rule from commit path
     - netfilter: nf_tables: bail out early if hardware offload is not supported
     - xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
     - af_unix: Fix a data-race in unix_dgram_peer_wake_me().
     - bpf, arm64: Clear prog->jited_len along prog->jited
     - net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
     - net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure
     - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer()
     - net: mdio: unexport __init-annotated mdio_bus_init()
     - net: xfrm: unexport __init-annotated xfrm4_protocol_init()
     - net: ipv6: unexport __init-annotated seg6_hmac_init()
     - net/mlx5: Rearm the FW tracer after each tracer event
     - net/mlx5: fs, fail conflicting actions
     - ip_gre: test csum_start instead of transport header
     - net: altera: Fix refcount leak in altera_tse_mdio_create
     - drm: imx: fix compiler warning with gcc-12
     - iio: dummy: iio_simple_dummy: check the return value of kstrdup()
     - staging: rtl8712: fix a potential memory leak in r871xu_drv_init()
     - iio: st_sensors: Add a local lock for protecting odr
     - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean()
     - tty: Fix a possible resource leak in icom_probe
     - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()
     - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop()
     - USB: host: isp116x: check return value after calling
       platform_get_resource()
     - drivers: tty: serial: Fix deadlock in sa1100_set_termios()
     - drivers: usb: host: Fix deadlock in oxu_bus_suspend()
     - USB: hcd-pci: Fully suspend across freeze/thaw cycle
     - sysrq: do not omit current cpu when showing backtrace of all active CPUs
     - usb: dwc2: gadget: don't reset gadget's driver->bus
     - misc: rtsx: set NULL intfdata when probe fails
     - extcon: Modify extcon device to be created after driver data is set
     - clocksource/drivers/sp804: Avoid error on multiple instances
     - staging: rtl8712: fix uninit-value in usb_read8() and friends
     - staging: rtl8712: fix uninit-value in r871xu_drv_init()
     - serial: msm_serial: disable interrupts in __msm_console_write()
     - kernfs: Separate kernfs_pr_cont_buf and rename_lock.
     - watchdog: wdat_wdt: Stop watchdog when rebooting the system
     - md: protect md_unregister_thread from reentrancy
     - scsi: myrb: Fix up null pointer access on myrb_cleanup()
     - Revert "net: af_key: add check for pfkey_broadcast in function
       pfkey_process"
     - ceph: allow ceph.dir.rctime xattr to be updatable
     - drm/radeon: fix a possible null pointer dereference
     - modpost: fix undefined behavior of is_arm_mapping_symbol()
     - [x86] cpu: Elide KCSAN for cpu_has() and friends
     - jump_label,noinstr: Avoid instrumentation for JUMP_LABEL=n builds
     - nbd: call genl_unregister_family() first in nbd_cleanup()
     - nbd: fix race between nbd_alloc_config() and module removal
     - nbd: fix io hung while disconnecting device
     - [s390x] gmap: voluntarily schedule during key setting
     - cifs: version operations for smb20 unneeded when legacy support disabled
     - nodemask: Fix return values to be unsigned
     - vringh: Fix loop descriptors check in the indirect cases
     - scripts/gdb: change kernel config dumping method
     - ALSA: hda/conexant - Fix loopback issue with CX20632
     - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo
       Yoga DuetITL 2021
     - cifs: return errors during session setup during reconnects
     - cifs: fix reconnect on smb3 mount types
     - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files
     - mmc: block: Fix CQE recovery reset success
     - net: phy: dp83867: retrigger SGMII AN when link change
     - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION
     - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling
     - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION
     - ixgbe: fix bcast packets Rx on VF after promisc removal
     - ixgbe: fix unexpected VLAN Rx in promisc mode on VF
     - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag
     - drm/bridge: analogix_dp: Support PSR-exit to disable transition
     - drm/atomic: Force bridge self-refresh-exit on CRTC switch
     - [powerpc*] 32: Fix overread/overwrite of thread_struct via ptrace
       (CVE-2022-32981)
     - [powerpc*] mm: Switch obsolete dssall to .long
     - interconnect: qcom: sc7180: Drop IP0 interconnects
     - interconnect: Restore sync state by ignoring ipa-virt in provider count
     - md/raid0: Ignore RAID0 layout if the second zone has only one device
     - PCI: qcom: Fix pipe clock imbalance
     - zonefs: fix handling of explicit_open option on mount
     - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT
     - tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.123
     - [x86] Mitigate Processor MMIO Stale Data vulnerabilities
       (CVE-2022-21123, CVE-2022-21125, CVE-2022-21166):
       + Documentation: Add documentation for Processor MMIO Stale Data
       + x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
       + x86/speculation: Add a common function for MD_CLEAR mitigation update
       + x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
       + x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
       + x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
       + x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
       + x86/speculation/srbds: Update SRBDS mitigation selection
       + x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
       + KVM: x86/speculation: Disable Fill buffer clear within guests
       + x86/speculation/mmio: Print SMT warning
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.124
     - 9p: missing chunk of "fs/9p: Don't update file type when updating file
       attributes"
     - nfsd: Replace use of rwsem with errseq_t
     - bpf: Fix incorrect memory charge cost calculation in stack_map_alloc()
     - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()
     - quota: Prevent memory allocation recursion while holding dq_lock
     - [armhf] ASoC: es8328: Fix event generation for deemphasis control
     - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to
       dmi_use_low_level_irq
     - scsi: vmw_pvscsi: Expand vcpuHint to 16 bits
     - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology
     - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd
       completion
     - scsi: ipr: Fix missing/incorrect resource cleanup in error case
     - scsi: pmcraid: Fix missing resource cleanup in error case
     - ALSA: hda/realtek - Add HW8326 support
     - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration
       failed
     - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg
     - random: credit cpu and bootloader seeds by default
     - pNFS: Don't keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE
     - pNFS: Avoid a live lock condition in pnfs_update_layout()
     - [x86] clocksource: hyper-v: unexport __init-annotated
       hv_init_clocksource()
     - i40e: Fix adding ADQ filter to TC0
     - i40e: Fix calculating the number of queue pairs
     - i40e: Fix call trace in setup_tx_descriptors
     - [x86] Drivers: hv: vmbus: Release cpu lock in error case
     - [x86] drm/i915/reset: Fix error_state_read ptr + offset use
     - nvme: use sysfs_emit instead of sprintf
     - nvme: add device name to warning in uuid_show()
     - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg
     - [arm64] ftrace: fix branch range checks
     - [arm64] ftrace: consistently handle PLTs.
     - block: Fix handling of offline queues in blk_mq_alloc_request_hctx()
     - faddr2line: Fix overlapping text section failures, the sequel
     - [arm64,armhf] irqchip/gic-v3: Fix error handling in
       gic_populate_ppi_partitions
     - [arm64,armhf] irqchip/gic-v3: Fix refcount leak in
       gic_populate_ppi_partitions
     - i2c: designware: Use standard optional ref clock implementation
     - [x86] mei: me: add raptor lake point S DID
     - [x86] comedi: vmk80xx: fix expression for tx buffer size
     - USB: serial: option: add support for Cinterion MV31 with new baseline
     - USB: serial: io_ti: add Agilent E5805A support
     - [arm*] usb: dwc2: Fix memory leak in dwc2_hcd_init
     - serial: 8250: Store to lsr_save_flags after lsr read
     - dm mirror log: round up region bitmap size to BITS_PER_LONG
     - drm/amd/display: Cap OLED brightness per max frame-average luminance
     - ext4: fix bug_on ext4_mb_use_inode_pa
     - ext4: make variable "count" signed
     - ext4: add reserved GDT blocks check
     - [arm64] KVM: arm64: Don't read a HW interrupt pending state in user
       context
     - [x86] KVM: x86: Account a variety of miscellaneous allocations
     - [x86] KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel
       data leak
     - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine
     - virtio-pci: Remove wrong address verification in vp_del_vqs()
     - dma-direct: don't over-decrypt memory
     - net/sched: act_police: more accurate MTU policing
     - net: openvswitch: fix misuse of the cached connection on tuple changes
     - Revert "PCI: Make pci_enable_ptm() private"
     - igc: Enable PCIe PTM
     - [arm64] clk: imx8mp: fix usb_root_clk parent
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.125
     - [s390x] mm: use non-quiescing sske for KVM switch to keyed guest
     - zonefs: fix zonefs_iomap_begin() for reads
     - usb: gadget: u_ether: fix regression in setting fixed MAC address
     - tcp: add some entropy in __inet_hash_connect()
     - tcp: use different parts of the port_offset for index and offset
       (CVE-2022-1012)
     - tcp: add small random increments to the source port (CVE-2022-1012)
     - tcp: dynamically allocate the perturb table used by source ports
       (CVE-2022-1012)
     - tcp: increase source port perturb table to 2^16 (CVE-2022-1012,
       CVE-2022-32296)
     - tcp: drop the hash_32() part from the index calculation (CVE-2022-1012)
     - serial: core: Initialize rs485 RTS polarity already on probe
     - [arm64] mm: Don't invalidate FROM_DEVICE buffers at start of DMA transfer
     - io_uring: add missing item types for various requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.126
     - io_uring: use separate list entry for iopoll requests
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.127
     - vt: drop old FONT ioctls
     - random: schedule mix_interrupt_randomness() less often
     - random: quiet urandom warning ratelimit suppression message
     - ALSA: hda/via: Fix missing beep setup
     - ALSA: hda/conexant: Fix missing beep setup
     - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop
     - ALSA: hda/realtek - ALC897 headset MIC no sound
     - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly
     - ALSA: hda/realtek: Add quirk for Clevo PD70PNT
     - ALSA: hda/realtek: Add quirk for Clevo NS50PU
     - net: openvswitch: fix parsing of nw_proto for IPv6 fragments
     - btrfs: add error messages to all unrecognized mount options
     - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing
     - [armhf] mtd: rawnand: gpmi: Fix setting busy timeout setting
     - ata: libata: add qc->flags in ata_qc_complete_template tracepoint
     - dm era: commit metadata in postsuspend after worker stops
     - dm mirror log: clear log bits up to BITS_PER_LONG boundary
     - USB: serial: option: add Telit LE910Cx 0x1250 composition
     - USB: serial: option: add Quectel EM05-G modem
     - USB: serial: option: add Quectel RM500K module support
     - [arm64] drm/msm: Fix double pm_runtime_disable() call
     - netfilter: nftables: add nft_parse_register_load() and use it
     - netfilter: nftables: add nft_parse_register_store() and use it
     - netfilter: use get_random_u32 instead of prandom
     - scsi: scsi_debug: Fix zone transition to full condition
     - [arm64] drm/msm: use for_each_sgtable_sg to iterate over scatterlist
     - bpf: Fix request_sock leak in sk lookup helpers
     - [arm64,armhf] drm/sun4i: Fix crash during suspend after component bind
       failure
     - [amd64] bpf, x86: Fix tail call count offset calculation on bpf2bpf call
     - phy: aquantia: Fix AN when higher speeds than 1G are not advertised
     - tipc: simplify the finalize work queue
     - tipc: fix use-after-free Read in tipc_named_reinit
     - igb: fix a use-after-free issue in igb_clean_tx_ring
     - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers
     - net/sched: sch_netem: Fix arithmetic in netem_dump() for 32-bit platforms
     - [arm64] drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf
     - [arm64] drm/msm/dp: check core_initialized before disable interrupts at
       dp_display_unbind()
     - [arm64] drm/msm/dp: fixes wrong connection state caused by failure of link
       train
     - [arm64] drm/msm/dp: deinitialize mainlink if link training failed
     - [arm64] drm/msm/dp: promote irq_hpd handle to handle link training
       correctly
     - [arm64] drm/msm/dp: fix connect/disconnect handled at irq_hpd
     - erspan: do not assume transport header is always set
     - x86/xen: Remove undefined behavior in setup_features()
     - afs: Fix dynamic root getattr
     - ice: ethtool: advertise 1000M speeds properly
     - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips
     - igb: Make DMA faster when CPU is active on the PCIe link
     - virtio_net: fix xdp_rxq_info bug after suspend/resume
     - nvme: centralize setting the timeout in nvme_alloc_request
     - nvme: split nvme_alloc_request()
     - nvme: mark nvme_setup_passsthru() inline
     - nvme: don't check nvme_req flags for new req
     - nvme-pci: allocate nvme_command within driver pdu
     - nvme-pci: add NO APST quirk for Kioxia device
     - nvme: move the Samsung X5 quirk entry to the core quirks
     - [s390x] cpumf: Handle events cycles and instructions identical
     - iio: mma8452: fix probe fail when device tree compatible is used.
     - iio: adc: vf610: fix conversion mode sysfs node name
     - xhci: turn off port power in shutdown
     - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI
     - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI
     - [arm64,armhf] usb: chipidea: udc: check request status before setting
       device address
     - f2fs: attach inline_data after setting compression
     - iio:accel:bma180: rearrange iio trigger get and register
     - iio:accel:mxc4005: rearrange iio trigger get and register
     - iio: accel: mma8452: ignore the return value of reset operation
     - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up()
     - iio: imu: inv_icm42600: Fix broken icm42600 (chip id 0 value)
     - iio: adc: axp288: Override TS pin bias current for some models
     - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client
     - [powerpc*] Enable execve syscall exit tracepoint
     - [powerpc*] rtas: Allow ibm,platform-dump RTAS call with null buffer
       address
     - [powerpc*] powernv: wire up rng during setup_arch
     - [armhf] exynos: Fix refcount leak in exynos_map_pmu
     - modpost: fix section mismatch check for exported init/exit sections
     - random: update comment from copy_to_user() -> copy_to_iter()
     - [powerpc*] pseries: wire up rng during setup_arch()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.120-rt70
   * [rt] Drop "crypto: cryptd - add a lock instead
     preempt_disable/local_bh_disable" patch
   * Bump ABI to 16
 .
   [ Ben Hutchings ]
   * random: Enable RANDOM_TRUST_BOOTLOADER. This can be reverted using the
     kernel parameter: random.trust_bootloader=off
   * [armel,armhf] crypto: Enable optimised implementations (see #922204):
     - Enable CRYPTO_SHA256_ARM, CRYPTO_SHA512_ARM as modules
     - [armhf] Enable SHA1_ARM_NEON, CRYPTO_SHA1_ARM_CE, CRYPTO_SHA2_ARM_CE,
       CRYPTO_AES_ARM_BS, CRYPTO_AES_ARM_CE, CRYPTO_GHASH_ARM_CE,
       CRYPTO_CRCT10DIF_ARM_CE, CRYPTO_CRC32_ARM_CE as modules
linux-signed-i386 (5.10.120+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.120-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.114
     - USB: quirks: add a Realtek card reader
     - USB: quirks: add STRING quirk for VCOM device
     - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS
     - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader
     - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB
     - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions
     - xhci: Enable runtime PM on second Alderlake controller
     - xhci: stop polling roothubs after shutdown
     - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms
     - iio: dac: ad5592r: Fix the missing return value.
     - iio: dac: ad5446: Fix read_raw not returning set value
     - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on()
     - iio: imu: inv_icm42600: Fix I2C init possible nack
     - usb: misc: fix improper handling of refcount in uss720_probe()
     - [arm64,x86] usb: typec: ucsi: Fix reuse of completion structure
     - [arm64,x86] usb: typec: ucsi: Fix role swapping
     - usb: gadget: uvc: Fix crash when encoding data for usb request
     - usb: gadget: configfs: clear deactivation flag in
       configfs_composite_unbind()
     - [arm64,armhf] usb: dwc3: Try usb-role-switch first in dwc3_drd_init
     - [arm64,armhf] usb: dwc3: core: Fix tx/rx threshold settings
     - [arm64,armhf] usb: dwc3: core: Only handle soft-reset in DCTL
     - [arm64,armhf] usb: dwc3: gadget: Return proper request status
     - [arm*] usb: phy: generic: Get the vbus supply
     - [arm64,armhf] serial: imx: fix overrun interrupts in DMA mode
     - serial: 8250: Also set sticky MCR bits in console restoration
     - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device
     - [arm64,armhf] arch_topology: Do not set llc_sibling if llc_id is invalid
     - hex2bin: make the function hex_to_bin constant-time
     - hex2bin: fix access beyond string end
     - iocost: don't reset the inuse weight of under-weighted debtors
     - video: fbdev: udlfb: properly check endpoint type
     - iio:imu:bmi160: disable regulator in error path
     - USB: Fix xhci event ring dequeue pointer ERDP update issue
     - [armhf] phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe
     - [armhf] phy: samsung: exynos5250-sata: fix missing device put in probe
       error paths
     - [armhf] OMAP2+: Fix refcount leak in omap_gic_of_init
     - [armhf] bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific
     - [armhf] phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks
     - [armhf] dts: am3517-evm: Fix misc pinmuxing
     - [armhf] dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35
     - ipvs: correctly print the memory size of ip_vs_conn_tab
     - [armhf] pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered
       IRQs in EOI
     - [arm64,armhf] net: dsa: Add missing of_node_put() in
       dsa_port_link_register_of
     - netfilter: nft_set_rbtree: overlap detection with element re-addition
       after deletion
     - bpf, lwt: Fix crash when using bpf_skb_set_tunnel_key() from bpf_xmit lwt
       hook
     - [arm64,armhf] pinctrl: rockchip: fix RK3308 pinmux bits
     - tcp: md5: incorrect tcp_header_len for incoming connections
     - [armhf] pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ
       requested
     - tcp: ensure to use the most recently sent skb when filling the rate sample
     - wireguard: device: check for metadata_dst with skb_valid_dst()
     - sctp: check asoc strreset_chunk in sctp_generate_reconf_event
     - [arm64] dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock
     - [arm64] net: hns3: modify the return code of hclge_get_ring_chain_from_mbx
     - [arm64] net: hns3: add validity check for message data length
     - [arm64] net: hns3: add return value for mailbox handling in PF
     - net/smc: sync err code when tcp connection was refused
     - ip_gre: Make o_seqno start from 0 in native mode
     - ip6_gre: Make o_seqno start from 0 in native mode
     - ip_gre, ip6_gre: Fix race condition on o_seqno in collect_md mode
     - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT
     - tcp: make sure treq->af_specific is initialized
     - [arm64,armhf] bus: sunxi-rsb: Fix the return value of
       sunxi_rsb_device_create()
     - [arm64,armhf] clk: sunxi: sun9i-mmc: check return value after calling
       platform_get_resource()
     - [arm64] net: bcmgenet: hide status block before TX timestamping
     - net: phy: marvell10g: fix return value on error
     - bnx2x: fix napi API usage sequence
     - [arm64,armhf] net: fec: add missing of_node_put() in
       fec_enet_init_stop_mode()
     - ixgbe: ensure IPsec VF<->PF compatibility
     - tcp: fix F-RTO may not work correctly when receiving DSACK
     - [x86] ASoC: Intel: soc-acpi: correct device endpoints for max98373
     - ext4: fix bug_on in start_this_handle during umount filesystem
     - [amd64] x86: __memcpy_flushcache: fix wrong alignment if size > 2^32
     - cifs: destage any unwritten data to the server before calling
       copychunk_write
     - [x86] drivers: net: hippi: Fix deadlock in rr_close()
     - zonefs: Fix management of open zones
     - zonefs: Clear inode information flags on inode creation
     - [x86] drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses
     - [armhf] net: ethernet: stmmac: fix write to sgmii_adapter_base
     - [x86] thermal: int340x: Fix attr.show callback prototype
     - [x86] cpu: Load microcode during restore_processor_state()
     - tty: n_gsm: fix restart handling via CLD command
     - tty: n_gsm: fix decoupled mux resource
     - tty: n_gsm: fix mux cleanup after unregister tty device
     - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2
     - tty: n_gsm: fix malformed counter for out of frame data
     - netfilter: nft_socket: only do sk lookups when indev is available
     - tty: n_gsm: fix insufficient txframe size
     - tty: n_gsm: fix wrong DLCI release order
     - tty: n_gsm: fix missing explicit ldisc flush
     - tty: n_gsm: fix wrong command retry handling
     - tty: n_gsm: fix wrong command frame length field encoding
     - tty: n_gsm: fix reset fifo race condition
     - tty: n_gsm: fix incorrect UA handling
     - tty: n_gsm: fix software flow control handling
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.115
     - [mips*] Fix CP0 counter erratum detection for R4k CPUs
     - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers
     - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
     - [arm64] mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC
     - mmc: core: Set HS clock speed before sending HS CMD13
     - gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
     - [x86] KVM: x86/svm: Account for family 17h event renumberings in
       amd_pmc_perf_hw_id
     - [amd64] iommu/vt-d: Calculate mask for non-aligned flushes
     - Revert "SUNRPC: attempt AF_LOCAL connect on setup"
     - firewire: fix potential uaf in outbound_phy_packet_callback()
     - firewire: remove check of list iterator against head past the loop body
     - firewire: core: extend card->lock in fw_core_handle_bus_reset
     - net: stmmac: disable Split Header (SPH) for Intel platforms
     - genirq: Synchronize interrupt thread startup
     - ASoC: da7219: Fix change notifications for tone generator frequency
     - [s390x] dasd: fix data corruption for ESE devices
     - [s390x] dasd: prevent double format of tracks for ESE devices
     - [s390x] dasd: Fix read for ESE with blksize < 4k
     - [s390x] dasd: Fix read inconsistency for ESE DASD devices
     - can: isotp: remove re-binding of bound socket
     - nfc: replace improper check device_is_registered() in netlink related
       functions (CVE-2022-1974)
     - NFC: netlink: fix sleep in atomic bug when firmware download timeout
       (CVE-2022-1975)
     - [arm64,armhf] gpio: pca953x: fix irq_stat not updated when irq is disabled
       (irq_mask not set)
     - hwmon: (adt7470) Fix warning on module removal
     - [arm*] ASoC: dmaengine: Restore NULL prepare_slave_config() callback
     - net/mlx5e: Fix trust state reset in reload
     - net/mlx5e: Don't match double-vlan packets if cvlan is not set
     - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft
       release
     - net/mlx5e: Fix the calling of update_buffer_lossy() API
     - net/mlx5: Avoid double clear or set of sync reset requested
     - NFSv4: Don't invalidate inode attributes on delegation return
     - [arm64,armhf] net: stmmac: dwmac-sun8i: add missing of_node_put() in
       sun8i_dwmac_register_mdio_mux()
     - [armhf] net: cpsw: add missing of_node_put() in cpsw_probe_dt()
     - hinic: fix bug of wq out of bound access
     - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
     - bnxt_en: Fix unnecessary dropping of RX packets
     - [arm64,armhf] smsc911x: allow using IRQ0
     - btrfs: always log symlinks in full mode
     - net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
     - [x86] kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has
       architectural PMU
     - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu
     - [x86] kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
     - [x86] KVM: x86: Do not change ICR on write to APIC_SELF_IPI
     - [x86] KVM: x86/mmu: avoid NULL-pointer dereference on page freeing bugs
     - [x86] KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is
       advertised
     - rcu: Fix callbacks processing time limit retaining cond_resched()
     - rcu: Apply callbacks processing time limit only on softirq
     - block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
       (CVE-2022-0494)
     - dm: interlock pending dm_io and dm_wait_for_bios_completion
     - [arm64] PCI: aardvark: Clear all MSIs at setup
     - [arm64] PCI: aardvark: Fix reading MSI interrupt number
     - mmc: rtsx: add 74 Clocks in power on flow
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.116
     - regulator: consumer: Add missing stubs to regulator/consumer.h
     - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
     - nfp: bpf: silence bitwise vs. logical OR warning
     - Bluetooth: Fix the creation of hdev->name
     - mm: fix missing cache flush for all tail pages of compound page
     - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
     - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and
       __mcopy_atomic()
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.117
     - batman-adv: Don't skb_split skbuffs with frag_list
     - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing
     - hwmon: (tmp401) Add OF device ID table
     - mac80211: Reset MBSSID parameters upon connection
     - net: Fix features skip in for_each_netdev_feature()
     - [arm64] net: mscc: ocelot: fix last VCAP IS1/IS2 filter persisting in
       hardware when deleted
     - [arm64] net: mscc: ocelot: fix VCAP IS2 filters matching on both lookups
     - [arm64] net: mscc: ocelot: restrict tc-trap actions to VCAP IS2 lookup 0
     - [arm64] net: mscc: ocelot: avoid corrupting hardware counters when moving
       VCAP filters
     - ipv4: drop dst in multicast routing path
     - drm/nouveau: Fix a potential theorical leak in
       nouveau_get_backlight_name()
     - netlink: do not reset transport header in netlink_recvmsg()
     - sfc: Use swap() instead of open coding it
     - net: sfc: fix memory leak due to ptp channel
     - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
     - nfs: fix broken handling of the softreval mount option
     - dim: initialize all struct fields
     - [s390x] ctcm: fix variable dereferenced before check
     - [s390x] ctcm: fix potential memory leak
     - [s390x] lcs: fix variable dereferenced before check
     - net/sched: act_pedit: really ensure the skb is writable
     - [arm64] net: bcmgenet: Check for Wake-on-LAN interrupt probe deferral
     - [armhf] net: dsa: bcm_sf2: Fix Wake-on-LAN with mac_link_down()
     - net/smc: non blocking recvmsg() return -EAGAIN when no data and
       signal_pending
     - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
     - gfs2: Fix filesystem block deallocation for short writes
     - hwmon: (f71882fg) Fix negative temperature
     - ASoC: max98090: Reject invalid values in custom control put()
     - ASoC: max98090: Generate notifications on changes for custom control
     - ASoC: ops: Validate input values in snd_soc_put_volsw_range()
     - net: sfp: Add tx-fault workaround for Huawei MA5671A SFP ONT
     - tcp: resalt the secret every 10 seconds (CVE-2022-1012)
     - firmware_loader: use kernel credentials when reading firmware
     - tty: n_gsm: fix mux activation issues in gsm_config()
     - usb: cdc-wdm: fix reading stuck on device close
     - USB: serial: pl2303: add device id for HP LM930 Display
     - USB: serial: qcserial: add support for Sierra Wireless EM7590
     - USB: serial: option: add Fibocom L610 modem
     - USB: serial: option: add Fibocom MA510 modem
     - ceph: fix setting of xattrs on async created inodes
     - drm/nouveau/tegra: Stop using iommu_present()
     - i40e: i40e_main: fix a missing check on list iterator
     - [amd64,arm64] net: atlantic: always deep reset on pm op, fixing up my null
       deref regression
     - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
     - [x86] drm/vmwgfx: Initialize drm_mode_fb_cmd2
     - SUNRPC: Clean up scheduling of autoclose
     - SUNRPC: Prevent immediate close+reconnect
     - SUNRPC: Don't call connect() more than once on a TCP socket
     - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
       (CVE-2022-28893)
     - net: phy: Fix race condition on link status change
     - [arm*] arm[64]/memremap: don't abuse pfn_valid() to ensure presence of
       linear map
     - ping: fix address binding wrt vrf
     - usb: gadget: uvc: rename function to be more consistent
     - usb: gadget: uvc: allow for application to cleanly shutdown
     - io_uring: always use original task when preparing req identity
       (CVE-2022-1786)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.118
     - io_uring: always grab file table for deferred statx
     - floppy: use a statically allocated error counter
     - [x86] Revert "drm/i915/opregion: check port number bounds for SWSCI
       display power state"
     - igc: Remove _I_PHY_ID checking
     - igc: Remove phy->type checking
     - igc: Update I226_K device ID
     - rtc: fix use-after-free on device removal
     - [arm64] rtc: pcf2127: fix bug when reading alarm registers
     - Input: add bounds checking to input_set_capability()
     - nvme-pci: add quirks for Samsung X5 SSDs
     - gfs2: Disable page faults during lockless buffered reads
     - [arm64,armhf] rtc: sun6i: Fix time overflow handling
     - [armhf] crypto: stm32 - fix reference leak in stm32_crc_remove
     - [amd64] crypto: x86/chacha20 - Avoid spurious jumps to other functions
     - ALSA: hda/realtek: Enable headset mic on Lenovo P360
     - [s390x] pci: improve zpci_dev reference counting
     - nvme-multipath: fix hang when disk goes live over reconnect
     - rtc: mc146818-lib: Fix the AltCentury for AMD platforms
     - fs: fix an infinite loop in iomap_fiemap
     - drbd: remove usage of list iterator variable after loop
     - [arm64] platform/chrome: cros_ec_debugfs: detach log reader wq from devm
     - [armel,armhf] 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in
       unwind_frame()
     - nilfs2: fix lockdep warnings in page operations for btree nodes
     - nilfs2: fix lockdep warnings during disk space reclamation
     - Revert "swiotlb: fix info leak with DMA_FROM_DEVICE"
     - Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
       (CVE-2022-0854)
     - ALSA: usb-audio: Restore Rane SL-1 quirk
     - [i386] ALSA: wavefront: Proper check of get_user() error
     - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
     - perf: Fix sys_perf_event_open() race against self (CVE-2022-1729)
     - selinux: fix bad cleanup on error in hashtab_duplicate()
     - Fix double fget() in vhost_net_set_backend()
     - PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
     - [x86] KVM: x86/mmu: Update number of zapped pages even if page list is
       stable
     - [arm64] paravirt: Use RCU read locks to guard stolen_time
     - [arm64] mte: Ensure the cleared tags are visible before setting the PTE
     - [arm64] crypto: qcom-rng - fix infinite loop on requests not multiple of
       WORD_SZ
     - libceph: fix potential use-after-free on linger ping and resends
     - drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
     - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
     - [armhf] pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl
     - [arm64] net: macb: Increment rx bd head after allocating skb and buffer
     - net: evaluate net.ipvX.conf.all.disable_policy and disable_xfrm
     - xfrm: Add possibility to set the default to block if we have no policy
     - net: xfrm: fix shift-out-of-bounce
     - xfrm: make user policy API complete
     - xfrm: notify default policy on update
     - xfrm: fix dflt policy check when there is no policy configured
     - xfrm: rework default policy structure
     - xfrm: fix "disable_policy" flag use when arriving from different devices
     - net/sched: act_pedit: sanitize shift argument before usage
     - [x86] net: vmxnet3: fix possible use-after-free bugs in
       vmxnet3_rq_alloc_rx_buf()
     - [x86] net: vmxnet3: fix possible NULL pointer dereference in
       vmxnet3_rq_cleanup()
     - ice: fix possible under reporting of ethtool Tx and Rx statistics
     - net/qla3xxx: Fix a test in ql_reset_work()
     - net/mlx5e: Properly block LRO when XDP is enabled
     - net: af_key: add check for pfkey_broadcast in function pfkey_process
     - [armhf] 9196/1: spectre-bhb: enable for Cortex-A15
     - [armel,armhf] 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
     - igb: skip phy status check where unavailable
     - net: bridge: Clear offload_fwd_mark when passing frame up bridge
       interface.
     - [arm*] gpio: mvebu/pwm: Refuse requests with inverted polarity
     - scsi: qla2xxx: Fix missed DMA unmap for aborted commands
     - mac80211: fix rx reordering with non explicit / psmp ack policy
     - nl80211: validate S1G channel width
     - nl80211: fix locking in nl80211_set_tx_bitrate_mask()
     - ethernet: tulip: fix missing pci_disable_device() on error in
       tulip_init_one()
     - [amd64,arm64] net: atlantic: fix "frag[0] not initialized"
     - [amd64,arm64] net: atlantic: reduce scope of is_rsc_complete
     - [amd64,arm64] net: atlantic: add check for MAX_SKB_FRAGS
     - [amd64,arm64] net: atlantic: verify hw_head_ lies within TX buffer ring
     - [arm64] Enable repeat tlbi workaround on KRYO4XX gold CPUs
     - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group
     - afs: Fix afs_getattr() to refetch file status if callback break occurred
     - include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.119
     - lockdown: also lock down previous kgdb use (CVE-2022-21499)
     - staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
     - [x86] KVM: x86: Properly handle APF vs disabled LAPIC situation
     - [x86] KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
       (CVE-2022-1789)
     - tcp: change source port randomizarion at connect() time
     - secure_seq: use the 64 bits of the siphash for port offset calculation
       (CVE-2022-1012)
     - ACPI: sysfs: Make sparse happy about address space in use
     - ACPI: sysfs: Fix BERT error region memory mapping
     - random: avoid arch_get_random_seed_long() when collecting IRQ randomness
     - random: remove dead code left over from blocking pool
     - MAINTAINERS: co-maintain random.c
     - MAINTAINERS: add git tree for random.c
     - crypto: lib/blake2s - Move selftest prototype into header file
     - crypto: blake2s - define shash_alg structs using macros
     - [amd64] crypto: x86/blake2s - define shash_alg structs using macros
     - crypto: blake2s - remove unneeded includes
     - crypto: blake2s - move update and final logic to internal/blake2s.h
     - crypto: blake2s - share the "shash" API boilerplate code
     - crypto: blake2s - optimize blake2s initialization
     - crypto: blake2s - add comment for blake2s_state fields
     - crypto: blake2s - adjust include guard naming
     - crypto: blake2s - include <linux/bug.h> instead of <asm/bug.h>
     - lib/crypto: blake2s: include as built-in
     - lib/crypto: blake2s: move hmac construction into wireguard
     - lib/crypto: sha1: re-roll loops to reduce code size
     - lib/crypto: blake2s: avoid indirect calls to compression function for
       Clang CFI
     - random: document add_hwgenerator_randomness() with other input functions
     - random: remove unused irq_flags argument from add_interrupt_randomness()
     - random: use BLAKE2s instead of SHA1 in extraction
     - random: do not sign extend bytes for rotation when mixing
     - random: do not re-init if crng_reseed completes before primary init
     - random: mix bootloader randomness into pool
     - random: harmonize "crng init done" messages
     - random: use IS_ENABLED(CONFIG_NUMA) instead of ifdefs
     - random: early initialization of ChaCha constants
     - random: avoid superfluous call to RDRAND in CRNG extraction
     - random: don't reset crng_init_cnt on urandom_read()
     - random: fix typo in comments
     - random: cleanup poolinfo abstraction
     - random: cleanup integer types
     - random: remove incomplete last_data logic
     - random: remove unused extract_entropy() reserved argument
     - random: rather than entropy_store abstraction, use global
     - random: remove unused OUTPUT_POOL constants
     - random: de-duplicate INPUT_POOL constants
     - random: prepend remaining pool constants with POOL_
     - random: cleanup fractional entropy shift constants
     - random: access input_pool_data directly rather than through pointer
     - random: selectively clang-format where it makes sense
     - random: simplify arithmetic function flow in account()
     - random: continually use hwgenerator randomness
     - random: access primary_pool directly rather than through pointer
     - random: only call crng_finalize_init() for primary_crng
     - random: use computational hash for entropy extraction
     - random: simplify entropy debiting
     - random: use linear min-entropy accumulation crediting
     - random: always wake up entropy writers after extraction
     - random: make credit_entropy_bits() always safe
     - random: remove use_input_pool parameter from crng_reseed()
     - random: remove batched entropy locking
     - random: fix locking in crng_fast_load()
     - random: use RDSEED instead of RDRAND in entropy extraction
     - random: get rid of secondary crngs
     - random: inline leaves of rand_initialize()
     - random: ensure early RDSEED goes through mixer on init
     - random: do not xor RDRAND when writing into /dev/random
     - random: absorb fast pool into input pool after fast load
     - random: use simpler fast key erasure flow on per-cpu keys
     - random: use hash function for crng_slow_load()
     - random: make more consistent use of integer types
     - random: remove outdated INT_MAX >> 6 check in urandom_read()
     - random: zero buffer after reading entropy from userspace
     - random: fix locking for crng_init in crng_reseed()
     - random: tie batched entropy generation to base_crng generation
     - random: remove ifdef'd out interrupt bench
     - random: remove unused tracepoints
     - random: add proper SPDX header
     - random: deobfuscate irq u32/u64 contributions
     - random: introduce drain_entropy() helper to declutter crng_reseed()
     - random: remove useless header comment
     - random: remove whitespace and reorder includes
     - random: group initialization wait functions
     - random: group crng functions
     - random: group entropy extraction functions
     - random: group entropy collection functions
     - random: group userspace read/write functions
     - random: group sysctl functions
     - random: rewrite header introductory comment
     - random: defer fast pool mixing to worker
     - random: do not take pool spinlock at boot
     - random: unify early init crng load accounting
     - random: check for crng_init == 0 in add_device_randomness()
     - random: pull add_hwgenerator_randomness() declaration into random.h
     - random: clear fast pool, crng, and batches in cpuhp bring up
     - random: round-robin registers as ulong, not u32
     - random: only wake up writers after zap if threshold was passed
     - random: cleanup UUID handling
     - random: unify cycles_t and jiffies usage and types
     - random: do crng pre-init loading in worker rather than irq
     - random: give sysctl_random_min_urandom_seed a more sensible value
     - random: don't let 644 read-only sysctls be written to
     - random: replace custom notifier chain with standard one
     - random: use SipHash as interrupt entropy accumulator
     - random: make consistent usage of crng_ready()
     - random: reseed more often immediately after booting
     - random: check for signal and try earlier when generating entropy
     - random: skip fast_init if hwrng provides large chunk of entropy
     - random: treat bootloader trust toggle the same way as cpu trust toggle
     - random: re-add removed comment about get_random_{u32,u64} reseeding
     - random: mix build-time latent entropy into pool at init
     - random: do not split fast init input in add_hwgenerator_randomness()
     - random: do not allow user to keep crng key around on stack
     - random: check for signal_pending() outside of need_resched() check
     - random: check for signals every PAGE_SIZE chunk of /dev/[u]random
     - random: allow partial reads if later user copies fail
     - random: make random_get_entropy() return an unsigned long
     - random: document crng_fast_key_erasure() destination possibility
     - random: fix sysctl documentation nits
     - init: call time_init() before rand_initialize()
     - [s390x] define get_cycles macro for arch-override
     - [powerpc*] define get_cycles macro for arch-override
     - timekeeping: Add raw clock fallback for random_get_entropy()
     - [mips*] use fallback for random_get_entropy() instead of just c0 random
     - [arm*] use fallback for random_get_entropy() instead of zero
     - [x86] tsc: Use fallback for random_get_entropy() instead of zero
     - random: insist on random_get_entropy() existing in order to simplify
     - random: do not use batches when !crng_ready()
     - random: use first 128 bits of input as fast init
     - random: do not pretend to handle premature next security model
     - random: order timer entropy functions below interrupt functions
     - random: do not use input pool from hard IRQs
     - random: help compiler out with fast_mix() by using simpler arguments
     - siphash: use one source of truth for siphash permutations
     - random: use symbolic constants for crng_init states
     - random: avoid initializing twice in credit race
     - random: move initialization out of reseeding hot path
     - random: remove ratelimiting for in-kernel unseeded randomness
     - random: use proper jiffies comparison macro
     - random: handle latent entropy and command line from random_init()
     - random: credit architectural init the exact amount
     - random: use static branch for crng_ready()
     - random: remove extern from functions in header
     - random: use proper return types on get_random_{int,long}_wait()
     - random: make consistent use of buf and len
     - random: move initialization functions out of hot pages
     - random: move randomize_page() into mm where it belongs
     - random: unify batched entropy implementations
     - random: convert to using fops->read_iter()
     - random: convert to using fops->write_iter()
     - random: wire up fops->splice_{read,write}_iter()
     - random: check for signals after page of pool writes
     - ALSA: ctxfi: Add SB046x PCI ID
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.120
     - percpu_ref_init(): clean ->percpu_count_ref on failure
     - net: af_key: check encryption module availability consistency
     - nfc: pn533: Fix buggy cleanup order
     - [armhf] net: ftgmac100: Disable hardware checksum on AST2600
     - [x86] i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
     - [arm64] drivers: i2c: thunderx: Allow driver to work with ACPI defined
       TWSI controllers
     - netfilter: nf_tables: disallow non-stateful expression in sets earlier
       (CVE-2022-1966)
     - pipe: make poll_usage boolean and annotate its access
     - pipe: Fix missing lock in pipe_resize_ring() (ZDI-CAN-17291)
     - cfg80211: set custom regdomain after wiphy registration
     - assoc_array: Fix BUG_ON during garbage collect
     - io_uring: don't re-import iovecs from callbacks
     - io_uring: fix using under-expanded iters
     - xfs: detect overflows in bmbt records
     - xfs: show the proper user quota options
     - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
     - xfs: fix an ABBA deadlock in xfs_rename
     - xfs: Fix CIL throttle hang when CIL space used going backwards
     - exfat: check if cluster num is valid
     - crypto: drbg - prepare for more fine-grained tracking of seeding state
     - crypto: drbg - track whether DRBG was seeded with !rng_is_initialized()
     - crypto: drbg - move dynamic ->reseed_threshold adjustments to
       __drbg_seed()
     - crypto: drbg - make reseeding from get_random_bytes() synchronous
     - netfilter: nf_tables: sanitize nft_set_desc_concat_parse() (CVE-2022-1972)
     - netfilter: conntrack: re-fetch conntrack after insertion
     - [x86] kvm: Alloc dummy async #PF token outside of raw spinlock
     - [x86] kvm: use correct GFP flags for preemption disabled
     - [x86] KVM: x86: avoid calling x86 emulator without a decoded instruction
       (CVE-2022-1852)
     - [arm64] crypto: caam - fix i.MX6SX entropy delay value
     - crypto: ecrdsa - Fix incorrect use of vli_cmp
     - zsmalloc: fix races between asynchronous zspage free and page migration
     - Bluetooth: hci_qca: Use del_timer_sync() before freeing
     - dm integrity: fix error code in dm_integrity_ctr()
     - dm crypt: make printing of the key constant-time
     - dm stats: add cond_resched when looping over entries
     - dm verity: set DM_TARGET_IMMUTABLE feature flag
     - raid5: introduce MD_BROKEN
     - HID: multitouch: Add support for Google Whiskers Touchpad
     - HID: multitouch: add quirks to enable Lenovo X12 trackpoint
     - tpm: Fix buffer access in tpm2_get_tpm_pt()
     - docs: submitting-patches: Fix crossref to 'The canonical patch format'
     - NFS: Memory allocation failures are not server fatal errors
     - NFSD: Fix possible sleep during nfsd4_release_lockowner()
     - bpf: Fix potential array overflow in bpf_trampoline_get_progs()
     - bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Update to 5.10.115-rt67
   * Bump ABI to 15
   * [rt] Drop "random: Make it work on rt"
 .
   [ Mateusz Łukasik ]
   * [armhf] drivers/thermal: Enable SUN8I_THERMAL as module (Closes: #1007799)
linux-signed-i386 (5.10.120+1~bpo10+1) buster-backports; urgency=high
 .
   * Sign kernel from linux 5.10.120-1~bpo10+1
 .
   * Rebuild for buster-backports:
     - Change ABI number to 0.bpo.15
linux-signed-i386 (5.10.113+1) bullseye-security; urgency=high
 .
   * Sign kernel from linux 5.10.113-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.107
     - Revert "xfrm: state and policy should fail if XFRMA_IF_ID 0"
       (Closes: #1008299)
     - xfrm: Check if_id in xfrm_migrate
     - xfrm: Fix xfrm migrate issues when address family changes
     - mac80211: refuse aggregations sessions before authorized
     - [mips64el,mipsel] smp: fill in sibling and core maps earlier
     - [x86] atm: firestream: check the return value of ioremap() in fs_init()
     - iwlwifi: don't advertise TWT support
     - drm/vrr: Set VRR capable prop only if it is attached to connector
     - nl80211: Update bss channel on channel switch for P2P_CLIENT
     - sfc: extend the locking on mcdi->seqno
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.108
     - [arm64] crypto: qcom-rng - ensure buffer for generate is completely filled
     - ocfs2: fix crash when initialize filecheck kobj fails
     - mm: swap: get rid of livelock in swapin readahead
     - efi: fix return value of __setup handlers
     - vsock: each transport cycles only on its own sockets
     - esp6: fix check on ipv6_skip_exthdr's return value
     - net: phy: marvell: Fix invalid comparison in the resume and suspend
       functions
     - net/packet: fix slab-out-of-bounds access in packet_recvmsg()
     - atm: eni: Add check for dma_map_single
     - [x86] hv_netvsc: Add check for kvmalloc_array
     - [armhf] drm/imx: parallel-display: Remove bus flags check in
       imx_pd_bridge_atomic_check()
     - [arm64,armhf] drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings
     - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit()
     - [arm64,armhf] net: dsa: Add missing of_node_put() in dsa_port_parse_of
     - net: phy: mscc: Add MODULE_FIRMWARE macros
     - bnx2x: fix built-in kernel driver load failure
     - [arm64] net: bcmgenet: skip invalid partial checksums
     - [arm64] net: mscc: ocelot: fix backwards compatibility with single-chain
       tc-flower offload
     - usb: gadget: rndis: prevent integer overflow in rndis_set_response()
     - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver
     - usb: usbtmc: Fix bug in pipe direction for control transfers
     - scsi: mpt3sas: Page fault in reply q processing
     - Input: aiptek - properly check endpoint type
     - perf symbols: Fix symbol size calculation condition
     - net: usb: Correct PHY handling of smsc95xx
     - net: usb: Correct reset handling of smsc95xx
     - smsc95xx: Ignore -ENODEV errors when device is unplugged
     - esp: Fix possible buffer overflow in ESP transformation (CVE-2022-27666)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.109
     - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
       (CVE-2022-26490)
     - net: ipv6: fix skb_over_panic in __ip6_append_data
     - exfat: avoid incorrectly releasing for root inode
     - cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv
       (CVE-2021-4197)
     - cgroup: Use open-time cgroup namespace for process migration perm checks
       (CVE-2021-4197)
     - cgroup-v1: Correct privileges check in release_agent writes
     - tpm: Fix error handling in async work
     - llc: fix netdevice reference leaks in llc_ui_bind() (CVE-2022-28356)
     - ALSA: oss: Fix PCM OSS buffer allocation overflow
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ
     - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ
     - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671
     - ALSA: hda/realtek: Add quirk for ASUS GA402
     - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent read/write and buffer changes
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
       (CVE-2022-1048)
     - ALSA: pcm: Fix races among concurrent prealloc proc writes (CVE-2022-1048)
     - ALSA: pcm: Add stream lock during PCM reset ioctl operations
     - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB
     - ALSA: cmipci: Restore aux vol on suspend/resume
     - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec
     - [arm64] drivers: net: xgene: Fix regression in CRC stripping
     - netfilter: nf_tables: initialize registers in nft_do_chain()
       (CVE-2022-1016)
     - [x86] ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board
     - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3
     - [x86] ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU
     - [x86] crypto: qat - disable registration of algorithms
     - Revert "ath: add support for special 0x0 regulatory domain"
     - rcu: Don't deboost before reporting expedited quiescent state
     - mac80211: fix potential double free on mesh join
     - tpm: use try_get_ops() in tpm-space.c
     - [arm64] wcn36xx: Differentiate wcn3660 from wcn3620
     - llc: only change llc->dev when bind() succeeds
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.110
     - swiotlb: fix info leak with DMA_FROM_DEVICE (CVE-2022-0854)
     - USB: serial: pl2303: add IBM device IDs
     - USB: serial: simple: add Nokia phone driver
     - netdevice: add the case if dev is NULL
     - HID: logitech-dj: add new lightspeed receiver id
     - xfrm: fix tunnel model fragmentation behavior
     - virtio_console: break out of buf poll on remove
     - ethernet: sun: Free the coherent when failing in probing
     - gpio: Revert regression in sysfs-gpio (gpiolib.c)
     - spi: Fix invalid sgs value
     - Revert "gpio: Revert regression in sysfs-gpio (gpiolib.c)"
     - spi: Fix erroneous sgs value with min_t()
     - af_key: add __GFP_ZERO flag for compose_sadb_supported in function
       pfkey_register (CVE-2022-1353)
     - [arm*] iommu/iova: Improve 32-bit free space estimate
     - tpm: fix reference counting for struct tpm_chip
     - virtio-blk: Use blk_validate_block_size() to validate block size
     - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c
     - xhci: fix garbage USBSTS being logged in some cases
     - xhci: fix runtime PM imbalance in USB2 resume
     - xhci: make xhci_handshake timeout for xhci_reset() adjustable
     - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx()
     - [x86] mei: me: add Alder Lake N device id.
     - [x86] mei: avoid iterator usage outside of list_for_each_entry
     - iio: inkern: apply consumer scale on IIO_VAL_INT cases
     - iio: inkern: apply consumer scale when no channel scale is available
     - iio: inkern: make a best effort on offset calculation
     - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE
     - KEYS: fix length validation in keyctl_pkey_params_get_2()
     - Documentation: add link to stable release candidate tree
     - Documentation: update stable tree link
     - firmware: stratix10-svc: add missing callback parameter on RSU
     - SUNRPC: avoid race between mod_timer() and del_timer_sync()
     - NFSD: prevent underflow in nfssvc_decode_writeargs()
     - NFSD: prevent integer overflow on 32 bit systems
     - f2fs: fix to unlock page correctly in error path of is_alive()
     - f2fs: quota: fix loop condition at f2fs_quota_sync()
     - f2fs: fix to do sanity check on .cp_pack_total_block_count
     - [armhf] remoteproc: Fix count check in rproc_coredump_write()
     - [armhf] pinctrl: samsung: drop pin banks references on error paths
     - mtd: rawnand: protect access to rawnand devices while in suspend
     - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28390)
     - jffs2: fix use-after-free in jffs2_clear_xattr_subsystem
     - jffs2: fix memory leak in jffs2_do_mount_fs
     - jffs2: fix memory leak in jffs2_scan_medium
     - mm/pages_alloc.c: don't create ZONE_MOVABLE beyond the end of a node
     - mm: invalidate hwpoison page cache page in fault path
     - mempolicy: mbind_range() set_policy() after vma_merge()
     - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands
     - qed: display VF trust config
     - qed: validate and restrict untrusted VFs vlan promisc mode
     - Revert "Input: clear BTN_RIGHT/MIDDLE on buttonpads"
     - cifs: prevent bad output lengths in smb2_ioctl_query_info()
     - cifs: fix NULL ptr dereference in smb2_ioctl_query_info()
       (CVE-2022-0168)
     - [i386] ALSA: cs4236: fix an incorrect NULL check on list iterator
     - ALSA: hda: Avoid unsol event during RPM suspending
     - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
     - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020
     - mm: madvise: skip unmapped vma holes passed to process_madvise
     - mm: madvise: return correct bytes advised with process_madvise
     - Revert "mm: madvise: skip unmapped vma holes passed to process_madvise"
     - mm,hwpoison: unmap poisoned page before invalidation
     - dm integrity: set journal entry unused when shrinking device
     - drbd: fix potential silent data corruption
     - can: isotp: sanitize CAN ID checks in isotp_bind()
     - [powerpc*] kvm: Fix kvm_use_magic_page
     - udp: call udp_encap_enable for v6 sockets when enabling encap
     - [arm64] signal: nofpsimd: Do not allocate fp/simd context when not
       available
     - ACPI: properties: Consistently return -ENOENT if there are no more
       references
     - coredump: Also dump first pages of non-executable ELF libraries
     - ext4: fix ext4_fc_stats trace point
     - ext4: fix fs corruption when tring to remove a non-empty directory with IO
       error
     - drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()
       (CVE-2022-1198)
     - block: limit request dispatch loop duration
     - block: don't merge across cgroup boundaries if blkcg is enabled
     - drm/edid: check basic audio support on CEA extension block
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5250
     - [armhf] dts: exynos: add missing HDMI supplies on SMDK5420
     - [x86] mgag200 fix memmapsl configuration in GCTL6 register
     - carl9170: fix missing bit-wise or operator for tx_params
     - pstore: Don't use semaphores in always-atomic-context code
     - [x86] thermal: int340x: Increase bitmap size
     - exec: Force single empty string when argv is empty
     - crypto: rsa-pkcs1pad - only allow with rsa
     - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist
     - crypto: rsa-pkcs1pad - restore signature length check
     - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete()
     - bcache: fixup multiple threads crash
     - DEC: Limit PMAX memory probing to R3k systems
     - brcmfmac: firmware: Allocate space for default boardrev in nvram
     - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path
     - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio
     - brcmfmac: pcie: Fix crashes due to early IRQs
     - [x86] drm/i915/opregion: check port number bounds for SWSCI display power
       state
     - [x86] drm/i915/gem: add missing boundary check in vm_access
     - PCI: pciehp: Clear cmd_busy bit in polling mode
     - [arm64] PCI: xgene: Revert "PCI: xgene: Fix IB window setup"
     - [arm64] regulator: qcom_smd: fix for_each_child.cocci warnings
     - selinux: check return value of sel_make_avc_files
     - [arm64] hwrng: cavium - Check health status while reading random data
     - [arm64] hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER
     - crypto: authenc - Fix sleep in atomic context in decrypt_tail
     - [x86] thermal: int340x: Check for NULL after calling kmemdup()
     - [arm64,armhf] spi: tegra114: Add missing IRQ check in tegra_spi_probe
     - [arm64] mm: avoid fixmap race condition when create pud mapping
     - audit: log AUDIT_TIME_* records only from rules
     - spi: pxa2xx-pci: Balance reference count for PCI DMA device
     - [armhf] hwmon: (pmbus) Add mutex to regulator ops
     - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING
     - nvme: cleanup __nvme_check_ids
     - block: don't delete queue kobject before its children
     - PM: hibernate: fix __setup handler error handling
     - PM: suspend: fix return value of __setup handler
     - [arm64] crypto: sun8i-ce - call finalize with bh disabled
     - [arm64,armhf] crypto: amlogic - call finalize with bh disabled
     - [armhf] clocksource/drivers/timer-ti-dm: Fix regression from errata i940
       fix
     - [armhf] clocksource/drivers/exynos_mct: Refactor resources allocation
     - [armhf] clocksource/drivers/exynos_mct: Handle DTS with higher number of
       interrupts
     - clocksource/drivers/timer-of: Check return value of of_iomap in
       timer_of_base_init()
     - ACPI: APEI: fix return value of __setup handlers
     - [x86] crypto: ccp - ccp_dmaengine_unregister release dma channels
     - [arm*] amba: Make the remove callback return void
     - [armhf] hwmon: (pmbus) Add Vin unit off handling
     - [x86] clocksource: acpi_pm: fix return value of __setup handler
     - io_uring: terminate manual loop iterator loop correctly for non-vecs
     - watch_queue: Fix NULL dereference in error cleanup
     - watch_queue: Actually free the watch
     - f2fs: fix to enable ATGC correctly via gc_idle sysfs interface
     - sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa
     - sched/core: Export pelt_thermal_tp
     - rseq: Optimise rseq_get_rseq_cs() and clear_rseq_cs()
     - rseq: Remove broken uapi field layout on 32-bit little endian
     - perf/core: Fix address filter parser for multiple filters
     - [x86] perf/x86/intel/pt: Fix address filter config for 32-bit kernel
     - f2fs: fix missing free nid in f2fs_handle_failed_inode
     - nfsd: more robust allocation failure handling in nfsd_file_cache_init
     - f2fs: fix to avoid potential deadlock
     - btrfs: fix unexpected error path when reflinking an inline extent
     - f2fs: compress: remove unneeded read when rewrite whole cluster
     - f2fs: fix compressed file start atomic write may cause data corruption
     - [arm64,armhf] media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP
       buffers across ioctls
     - media: bttv: fix WARNING regression on tunerless devices
     - [arm*] ASoC: generic: simple-card-utils: remove useless assignment
     - [armhf] media: coda: Fix missing put_device() call in coda_get_vdoa_data
     - [armhf] media: aspeed: Correct value for h-total-pixels
     - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to
       avoid black screen
     - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe()
     - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name()
     - [arm64] firmware: qcom: scm: Remove reassignment to desc following
       initializer
     - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is
       not defined
     - [armhf] dts: imx: Add missing LVDS decoder on M53Menlo
     - media: em28xx: initialize refcount before kref_get
     - media: usb: go7007: s2250-board: fix leak in probe()
     - [arm64,armhf] media: cedrus: H265: Fix neighbour info buffer size
     - [arm64,armhf] media: cedrus: h264: Fix neighbour info buffer size
     - [x86] ASoC: rt5663: check the return value of devm_kzalloc() in
       rt5663_parse_dp()
     - printk: fix return value of printk.devkmsg __setup handler
     - [x86] ASoC: soc-compress: prevent the potentially use of null pointer
     - [armhf] memory: emif: Add check for setup_interrupts
     - [armhf] memory: emif: check the pointer temp in get_device_details()
     - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction
     - [arm64] dts: rockchip: Fix SDIO regulator supply properties on
       rk3399-firefly
     - media: stk1160: If start stream fails, return buffers with
       VB2_BUF_STATE_QUEUED
     - media: saa7134: convert list_for_each to entry variant
     - media: saa7134: fix incorrect use to determine if list is empty
     - ivtv: fix incorrect device_caps for ivtvfb
     - [arm64,armhf] ASoC: rockchip: i2s: Use
       devm_platform_get_and_ioremap_resource()
     - [arm64,armhf] ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in
       rockchip_i2s_probe
     - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback
     - [armhf] ASoC: fsl_spdif: Disable TX clock when stop
     - [armhf] ASoC: imx-es8328: Fix error return code in imx_es8328_probe()
     - [arm64] drm/meson: osd_afbcd: Add an exit callback to struct
       meson_afbcd_ops
     - [arm64,armhf] drm/bridge: Add missing pm_runtime_disable() in
       __dw_mipi_dsi_probe
     - [arm64] drm: bridge: adv7511: Fix ADV7535 HPD enablement
     - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern
     - [arm64,armhf] drm/panfrost: Check for error num after setting mask
     - Bluetooth: hci_serdev: call init_rwsem() before p->open()
     - [armhf] mtd: rawnand: gpmi: fix controller timings setting
     - drm/edid: Don't clear formats if using deep color
     - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl()
     - drm/amd/display: Fix a NULL pointer dereference in
       amdgpu_dm_connector_add_common_modes()
     - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function
     - ath9k_htc: fix uninit value bugs
     - RDMA/core: Set MR type in ib_reg_user_mr
     - [powerpc*] KVM: PPC: Fix vmx/vsx mixup in mmio emulation
     - i40e: don't reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb
     - i40e: respect metadata on XSK Rx to skb
     - [x86] ray_cs: Check ioremap return value
     - [powerpc*] KVM: PPC: Book3S HV: Check return value of kvmppc_radix_init
     - [powerpc*] perf: Don't use perf_hw_context for trace IMC PMU
     - [arm64,armhf] net: dsa: mv88e6xxx: Enable port policy support on 6097
     - [arm64] PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated
       bridge
     - [arm64,armhf] drm/bridge: dw-hdmi: use safe format when first in bridge
       chain
     - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports
     - drm/amd/pm: enable pm sysfs write for one VF mode
     - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug
     - IB/cma: Allow XRC INI QPs to set their local ACK timeout
     - dax: make sure inodes are flushed before destroy cache
     - iwlwifi: Fix -EIO error code that is never returned
     - iwlwifi: mvm: Fix an error code in iwl_mvm_up()
     - [arm64] drm/msm/dp: populate connector of struct dp_panel
     - [arm64] drm/msm/dpu: add DSPP blocks teardown
     - [arm64] drm/msm/dpu: fix dp audio condition
     - scsi: pm8001: Fix command initialization in pm80XX_send_read_log()
     - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req()
     - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config()
     - scsi: pm8001: Fix le32 values handling in
       pm80xx_set_sas_protocol_timer_config()
     - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req()
     - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req()
     - scsi: pm8001: Fix NCQ NON DATA command task initialization
     - scsi: pm8001: Fix NCQ NON DATA command completion handling
     - scsi: pm8001: Fix abort all task initialization
     - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR
     - drm/amd/display: Remove vupdate_int_entry definition
     - TOMOYO: fix __setup handlers return values
     - [arm64,armhf] drm/tegra: Fix reference leak in tegra_dsi_ganged_probe
     - [x86] power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong
       false return
     - [arm64] scsi: hisi_sas: Change permission of parameter prot_mask
     - [arm64] bpf, arm64: Call build_prologue() first in first JIT pass
     - [arm64] bpf, arm64: Feed byte-offset into bpf line info
     - [arm64,armhf] gpu: host1x: Fix a memory leak in 'host1x_remove()'
     - [powerpc*] mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties()
     - [x86] KVM: x86: Fix emulation in writing cr8
     - [x86] KVM: x86/emulator: Defer not-present segment check in
       __load_segment_descriptor()
     - [x86] hv_balloon: rate-limit "Unhandled message" warning
     - [amd64] IB/hfi1: Allow larger MTU without AIP
     - PCI: Reduce warnings on possible RW1C corruption
     - [armhf] mfd: mc13xxx: Add check for mc13xxx_irq_request
     - [x86] platform/x86: huawei-wmi: check the return value of
       device_create_file()
     - vxcan: enable local echo for sent CAN frames
     - ath10k: Fix error handling in ath10k_setup_msa_resources
     - [mips*] pgalloc: fix memory leak caused by pgd_free()
     - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine
     - bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
     - bpf, sockmap: Fix more uncharged while msg has more_data
     - bpf, sockmap: Fix double uncharge the mem of sk_msg
     - USB: storage: ums-realtek: fix error code in rts51x_read_mem()
     - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket
     - can: isotp: support MSG_TRUNC flag when reading from socket
     - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed
     - ipv4: Fix route lookups when handling ICMP redirects and PMTU updates
     - af_netlink: Fix shift out of bounds in group mask calculation
     - [arm64,armhf] i2c: meson: Fix wrong speed use from probe
     - PCI: Avoid broken MSI on SB600 USB devices
     - [arm64] net: bcmgenet: Use stronger register read/writes to assure
       ordering
     - tcp: ensure PMTU updates are processed during fastopen
     - openvswitch: always update flow key after nat
     - tipc: fix the timer expires after interval 100ms
     - [x86] mxser: fix xmit_buf leak in activate when LSR == 0xff
     - [armhf] fsi: aspeed: convert to devm_platform_ioremap_resource
     - [armhf] fsi: Aspeed: Fix a potential double free
     - soundwire: intel: fix wrong register name in intel_shim_wake
     - iio: mma8452: Fix probe failing when an i2c_device_id is used
     - [arm64,armhf] phy: dphy: Correct lpx parameter and its
       derivatives(ta_{get,go,sure})
     - [x86] serial: 8250_mid: Balance reference count for PCI DMA device
     - [x86] serial: 8250_lpss: Balance reference count for PCI DMA device
     - NFS: Use of mapping_set_error() results in spurious errors
     - serial: 8250: Fix race condition in RTS-after-send handling
     - NFS: Return valid errors from nfs2/3_decode_dirent()
     - [arm64] clk: qcom: clk-rcg2: Update logic to calculate D value for RCG
     - [arm64] clk: qcom: clk-rcg2: Update the frac table for pixel clock
     - nvdimm/region: Fix default alignment for small regions
     - [armhf] clk: tegra: tegra124-emc: Fix missing put_device() call in
       emc_ensure_emc_driver
     - NFS: remove unneeded check in decode_devicenotify_args()
     - [arm64,armhf] pinctrl/rockchip: Add missing of_node_put() in
       rockchip_pinctrl_probe
     - [s390x] tty: hvc: fix return value of __setup handler
     - serial: 8250: fix XOFF/XON sending when DMA is used
     - driver core: dd: fix return value of __setup handler
     - jfs: fix divide error in dbNextAG
     - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options
     - NFSv4.1: don't retry BIND_CONN_TO_SESSION on session error
     - kdb: Fix the putarea helper function
     - clk: Initialize orphan req_rate
     - [amd64] xen: fix is_xen_pmu()
     - [arm64] net: enetc: report software timestamping via SO_TIMESTAMPING
     - [arm64] net: hns3: fix bug when PF set the duplicate MAC address for VFs
     - net: phy: broadcom: Fix brcm_fet_config_init()
     - NFSv4/pNFS: Fix another issue with a list iterator pointing to the head
     - [armhf] net: dsa: bcm_sf2_cfp: fix an incorrect NULL check on list
       iterator
     - fs: fd tables have to be multiples of BITS_PER_LONG
     - fs: fix fd table size alignment properly
     - LSM: general protection fault in legacy_parse_param
     - block, bfq: don't move oom_bfqq
     - selinux: use correct type for context length
     - selinux: allow FIOCLEX and FIONCLEX with policy capability
     - loop: use sysfs_emit() in the sysfs xxx show()
     - Fix incorrect type in assignment of ipv6 port for audit
     - fs/binfmt_elf: Fix AT_PHDR for unusual ELF files
     - bfq: fix use-after-free in bfq_dispatch_request
     - ACPICA: Avoid walking the ACPI Namespace if it is not there
     - Revert "Revert "block, bfq: honor already-setup queue merges""
     - ACPI/APEI: Limit printable size of BERT table data
     - PM: core: keep irq flags in device_pm_check_callbacks()
     - nvme-tcp: lockdep: annotate in-kernel sockets
     - [arm64] spi: tegra20: Use of_device_get_match_data()
     - ext4: correct cluster len and clusters changed accounting in
       ext4_mb_mark_bb
     - ext4: fix ext4_mb_mark_bb() with flex_bg with fast_commit
     - ext4: don't BUG if someone dirty pages without asking ext4 first
     - f2fs: fix to do sanity check on curseg->alloc_type
     - NFSD: Fix nfsd_breaker_owns_lease() return values
     - f2fs: compress: fix to print raw data size in error path of lz4
       decompression
     - video: fbdev: cirrusfb: check pixclock to avoid divide by zero
     - [armel,armhf] ftrace: avoid redundant loads or clobbering IP
     - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit
     - ASoC: soc-core: skip zero num_dai component in searching dai name
     - media: cx88-mpeg: clear interrupt status register before streaming video
     - uaccess: fix type mismatch warnings from access_ok()
     - media: Revert "media: em28xx: add missing em28xx_close_extension"
     - media: hdpvr: initialize dev->worker at hdpvr_register_videodev
     - mmc: host: Return an error when ->enable_sdio_irq() ops is missing
     - ALSA: hda/realtek: Add alc256-samsung-headphone fixup
     - [x86] KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP
       MMU
     - [powerpc*] lib/sstep: Fix 'sthcx' instruction
     - [powerpc*] lib/sstep: Fix build errors with newer binutils
     - scsi: qla2xxx: Fix stuck session in gpdb
     - scsi: qla2xxx: Fix scheduling while atomic
     - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter
     - scsi: qla2xxx: Fix warning for missing error code
     - scsi: qla2xxx: Fix device reconnect in loop topology
     - scsi: qla2xxx: Add devids and conditionals for 28xx
     - scsi: qla2xxx: Check for firmware dump already collected
     - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()
     - scsi: qla2xxx: Fix disk failure to rediscover
     - scsi: qla2xxx: Fix incorrect reporting of task management failure
     - scsi: qla2xxx: Fix hang due to session stuck
     - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests
     - scsi: qla2xxx: Fix N2N inconsistent PLOGI
     - scsi: qla2xxx: Reduce false trigger to login
     - scsi: qla2xxx: Use correct feature type field during RFF_ID processing
     - [arm64] platform: chrome: Split trace include file
     - [x86] KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn't
       activated
     - KVM: Prevent module exit until all VMs are freed
     - [x86] KVM: x86: fix sending PV IPI
     - [x86] KVM: SVM: fix panic on out-of-bounds guest IRQ
     - [x86] ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM
     - ubifs: rename_whiteout: Fix double free for whiteout_ui->data
     - ubifs: Fix deadlock in concurrent rename whiteout and inode writeback
     - ubifs: Add missing iput if do_tmpfile() failed in rename whiteout
     - ubifs: setflags: Make dirtied_ino_d 8 bytes aligned
     - ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
     - ubifs: Fix to add refcount once page is set private
     - ubifs: rename_whiteout: correct old_dir size computing
     - wireguard: queueing: use CFI-safe ptr_ring cleanup function
     - wireguard: socket: free skb in send6 when ipv6 is disabled
     - wireguard: socket: ignore v6 endpoints when ipv6 is disabled
     - XArray: Fix xas_create_range() when multi-order entry present
     - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error
       path (CVE-2022-28389)
     - can: mcba_usb: properly check endpoint type
     - XArray: Update the LRU list in xas_split()
     - rtc: check if __rtc_read_time was successful
     - gfs2: Make sure FITRIM minlen is rounded up to fs block size
     - [arm64] net: hns3: fix software vlan talbe of vlan 0 inconsistent with
       hardware
     - rxrpc: Fix call timer start racing with call destruction
     - [arm64] mailbox: imx: fix wakeup failure from freeze mode
     - watch_queue: Free the page array when watch_queue is dismantled
     - pinctrl: pinconf-generic: Print arguments for bias-pull-*
     - ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl
     - [arm*] iop32x: offset IRQ numbers by 1
     - io_uring: fix memory leak of uid in files registration
     - [amd64,arm64] ACPI: CPPC: Avoid out of bounds access when parsing _CPC
       data
     - [arm64] platform/chrome: cros_ec_typec: Check for EC device
     - can: isotp: restore accidentally removed MSG_PEEK feature
     - proc: bootconfig: Add null pointer check
     - [x86] ASoC: soc-compress: Change the check for codec_dai
     - batman-adv: Check ptr for NULL before reducing its refcnt
     - mm/mmap: return 1 from stack_guard_gap __setup() handler
     - mm/memcontrol: return 1 from cgroup.memory __setup() handler
     - mm/usercopy: return 1 from hardened_usercopy __setup() handler
     - bpf: Adjust BPF stack helper functions to accommodate skip > 0
     - bpf: Fix comment for helper bpf_current_task_under_cgroup()
     - dt-bindings: mtd: nand-controller: Fix the reg property description
     - dt-bindings: mtd: nand-controller: Fix a comment in the examples
     - dt-bindings: spi: mxic: The interrupt property is not mandatory
     - [x86] ASoC: topology: Allow TLV control to be either read or write
     - docs: sysctl/kernel: add missing bit to panic_print
     - openvswitch: Fixed nd target mask field in the flow dump.
     - [x86] KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
       (CVE-2022-1158)
     - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error
       path (CVE-2022-28388)
     - coredump: Snapshot the vmas in do_coredump
     - coredump: Remove the WARN_ON in dump_vma_snapshot
     - coredump/elf: Pass coredump_params into fill_note_info
     - coredump: Use the vma snapshot in fill_files_note
     - [arm64] Do not defer reserve_crashkernel() for platforms with no DMA
       memory zones
     - [arm64] PCI: xgene: Revert "PCI: xgene: Use inbound resources for setup"
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.111
     - ubifs: Rectify space amount budget for mkdir/tmpfile operations
     - gfs2: Check for active reservation in gfs2_release
     - gfs2: Fix gfs2_release for non-writers regression
     - gfs2: gfs2_setattr_size error path fix
     - [x86] KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs
     - [x86] KVM: x86/emulator: Emulate RDPID only if it is enabled in guest
     - drm: Add orientation quirk for GPD Win Max
     - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111
     - drm/amd/display: Add signal type check when verify stream backends same
     - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj
     - ptp: replace snprintf with sysfs_emit
     - [armhf] ath11k: fix kernel panic during unload/load ath11k modules
     - ath11k: mhi: use mhi_sync_power_up()
     - bpf: Make dst_port field in struct bpf_sock 16-bit wide
     - scsi: mvsas: Replace snprintf() with sysfs_emit()
     - scsi: bfa: Replace snprintf() with sysfs_emit()
     - [arm64,armhf] power: supply: axp20x_battery: properly report current when
       discharging
     - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill
     - cfg80211: don't add non transmitted BSS to 6GHz scanned channels
     - ipv6: make mc_forwarding atomic
     - [powerpc*] Set crashkernel offset to mid of RMA region
     - drm/amdgpu: Fix recursive locking warning
     - [arm64] PCI: aardvark: Fix support for MSI interrupts
     - [arm64] iommu/arm-smmu-v3: fix event handling soft lockup
     - usb: ehci: add pci device support for Aspeed platforms
     - tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.
     - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum
     - iwlwifi: mvm: Correctly set fragmented EBS
     - ipv4: Invalidate neighbour for broadcast address upon address addition
     - dm ioctl: prevent potential spectre v1 gadget
     - dm: requeue IO if mapping table not yet available
     - scsi: pm8001: Fix pm80xx_pci_mem_copy() interface
     - scsi: pm8001: Fix pm8001_mpi_task_abort_resp()
     - scsi: pm8001: Fix task leak in pm8001_send_abort_all()
     - scsi: pm8001: Fix tag leaks on error
     - scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req()
     - scsi: aha152x: Fix aha152x_setup() __setup handler return value
     - [arm64] scsi: hisi_sas: Free irq vectors in order for v3 HW
     - net/smc: correct settings of RMB window update limit
     - macvtap: advertise link netns via netlink
     - tuntap: add sanity checks about msg_controllen in sendmsg
     - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg}
     - Bluetooth: use memset avoid memory leaks
     - bnxt_en: Eliminate unintended link toggle during FW reset
     - [mps64el,mipsel] fix fortify panic when copying asm exception handlers
     - scsi: libfc: Fix use after free in fc_exch_abts_resp()
     - can: isotp: set default value for N_As to 50 micro seconds
     - net: account alternate interface name memory
     - net: limit altnames to 64k total
     - net: sfp: add 2500base-X quirk for Lantech SFP module
     - [armhf] usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on
       omap5evm
     - Bluetooth: Fix use after free in hci_send_acl
     - netlabel: fix out-of-bounds memory accesses
     - ceph: fix memory leak in ceph_readdir when note_last_dentry returns error
     - init/main.c: return 1 from handled __setup() functions
     - minix: fix bug when opening a file with O_DIRECT
     - [arm*] staging: vchiq_core: handle NULL result of find_service_by_handle
     - [arm64,armhf] phy: amlogic: meson8b-usb2: Use dev_err_probe()
     - w1: w1_therm: fixes w1_seq for ds28ea00 sensors
     - NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify()
     - NFSv4: Protect the state recovery thread against direct reclaim
     - xen: delay xen_hvm_init_time_ops() if kdump is boot on vcpu>=32
     - [armhf] clk: ti: Preserve node in ti_dt_clocks_register()
     - clk: Enforce that disjoints limits are invalid
     - SUNRPC/call_alloc: async tasks mustn't block waiting for memory
     - SUNRPC/xprt: async tasks mustn't block waiting for memory
     - SUNRPC: remove scheduling boost for "SWAPPER" tasks.
     - NFS: swap IO handling is slightly different for O_DIRECT IO
     - NFS: swap-out must always use STABLE writes.
     - [armhf] serial: samsung_tty: do not unlock port->lock for
       uart_write_wakeup()
     - virtio_console: eliminate anonymous module_init & module_exit
     - jfs: prevent NULL deref in diFree
     - SUNRPC: Fix socket waits for write buffer space
     - NFS: nfsiod should not block forever in mempool_alloc()
     - NFS: Avoid writeback threads getting stuck in mempool_alloc()
     - mm: fix race between MADV_FREE reclaim and blkdev direct IO read
     - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
     - [x86] Drivers: hv: vmbus: Fix potential crash on module unload
     - Revert "NFSv4: Handle the special Linux file open access mode"
     - NFSv4: fix open failure with O_ACCMODE flag
     - ice: Clear default forwarding VSI during VSI release
     - net: ipv4: fix route with nexthop object delete warning
     - net: stmmac: Fix unset max_speed difference between DT and non-DT
       platforms
     - [armhf] drm/imx: imx-ldb: Check for null pointer after calling kmemdup
     - [armhf] drm/imx: Fix memory leak in imx_pd_connector_get_modes
     - sfc: Do not free an empty page_ring
     - RDMA/mlx5: Don't remove cache MRs when a delay is needed
     - [amd64] IB/rdmavt: add lock to call to rvt_error_qp to prevent a race
       condition
     - [arm64] dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe
     - ice: Set txq_teid to ICE_INVAL_TEID on ring creation
     - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg
     - ipv6: Fix stats accounting in ip6_pkt_drop
     - ice: synchronize_rcu() when terminating rings
     - net: openvswitch: don't send internal clone attribute to the userspace.
     - net: openvswitch: fix leak of nested actions
     - rxrpc: fix a race in rxrpc_exit_net()
     - qede: confirm skb is allocated before using
     - bpf: Support dual-stack sockets in bpf_tcp_check_syncookie
     - drbd: Fix five use after free bugs in get_initial_state
     - io_uring: don't touch scm_fp_list after queueing skb
     - SUNRPC: Handle ENOMEM in call_transmit_status()
     - SUNRPC: Handle low memory situations in call_status()
     - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec()
     - [armhf] iommu/omap: Fix regression in probe for NULL pointer dereference
     - [arm64] Add part number for Arm Cortex-A78AE
     - [arm64] Revert "mmc: sdhci-xenon: fix annoying 1.8V regulator warning"
     - [arm64,armhf] mmc: mmci: stm32: correctly check all elements of sg list
     - lz4: fix LZ4_decompress_safe_partial read out of bound
     - mmmremap.c: avoid pointless invalidate_range_start/end on
       mremap(old_size=0)
     - mm/mempolicy: fix mpol_new leak in shared_policy_replace
     - io_uring: fix race between timeout flush and removal (CVE-2022-29582)
     - [x86] pm: Save the MSR validity status at context setup
     - [x86] speculation: Restore speculation related MSRs during S3 resume
     - btrfs: fix qgroup reserve overflow the qgroup limit
     - btrfs: prevent subvol with swapfile from being deleted
     - [arm64] patch_text: Fixup last cpu should be master
     - [amd64] RDMA/hfi1: Fix use-after-free bug for mm struct
     - gpio: Restrict usage of GPIO chip irq members before initialization
     - [arm64] perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator
     - [arm64,armhf] irqchip/gic-v3: Fix GICR_CTLR.RWP polling
     - drm/nouveau/pmu: Add missing callbacks for Tegra devices
     - mm: don't skip swap entry even if zap_details specified
     - cgroup: Use open-time credentials for process migraton perm checks
       (CVE-2021-4197)
     - [x86] Drivers: hv: vmbus: Replace smp_store_mb() with virt_store_mb()
     - [arm64,armhf] irqchip/gic, gic-v3: Prevent GSI to SGI translations
     - [powerpc*] Fix virt_addr_valid() for 64-bit Book3E & 32-bit
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.112
     - [amd64] drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
     - hamradio: defer 6pack kfree after unregister_netdev (CVE-2022-1195)
     - hamradio: remove needs_free_netdev to avoid UAF (CVE-2022-1195)
     - [arm64] cpuidle: PSCI: Move the `has_lpi` check to the beginning of the
       function
     - ACPI: processor idle: Check for architectural support for LPI
     - btrfs: remove unused variable in btrfs_{start,write}_dirty_block_groups()
     - [arm64] drm/msm: Add missing put_task_struct() in debugfs path
     - SUNRPC: Fix the svc_deferred_event trace class
     - net/sched: flower: fix parsing of ethertype following VLAN header
     - veth: Ensure eth header is in skb's linear part
     - gpiolib: acpi: use correct format characters
     - net: mdio: Alphabetically sort header inclusion
     - net/sched: fix initialization order when updating chain 0 head
     - [arm64] net: dsa: felix: suppress -EPROBE_DEFER errors
     - [armhf] net: ethernet: stmmac: fix altr_tse_pcs function when using a
       fixed-link
     - net/sched: taprio: Check if socket flags are valid
     - cfg80211: hold bss_lock while updating nontrans_list
     - [arm64] drm/msm: Fix range size vs end confusion
     - [arm64] drm/msm/dsi: Use connector directly in
       msm_dsi_manager_connector_init()
     - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()
     - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63
     - scsi: pm80xx: Enable upper inbound, outbound queues
     - scsi: iscsi: Stop queueing during ep_disconnect
     - scsi: iscsi: Force immediate failure during shutdown
     - scsi: iscsi: Use system_unbound_wq for destroy_work
     - scsi: iscsi: Rel ref after iscsi_lookup_endpoint()
     - scsi: iscsi: Fix in-kernel conn failure handling
     - scsi: iscsi: Move iscsi_ep_disconnect()
     - scsi: iscsi: Fix offload conn cleanup when iscsid restarts
     - scsi: iscsi: Fix conn cleanup and stop race during iscsid restart
     - sctp: Initialize daddr on peeled off socket
     - cifs: potential buffer overflow in handling symlinks
     - [arm64] net: bcmgenet: Revert "Use stronger register read/writes to assure
       ordering"
     - drm/amd: Add USBC connector ID
     - btrfs: fix fallocate to use file_modified to update permissions
       consistently
     - btrfs: do not warn for free space inode in cow_file_range
     - drm/amd/display: fix audio format not updated after edid updated
     - drm/amd/display: FEC check in timing validation
     - drm/amd/display: Update VTEM Infopacket definition
     - drm/amdkfd: Fix Incorrect VMIDs passed to HWS
     - drm/amdgpu/vcn: improve vcn dpg stop procedure
     - [x86] Drivers: hv: vmbus: Prevent load re-ordering when reading ring
       buffer
     - scsi: target: tcmu: Fix possible page UAF
     - scsi: lpfc: Fix queue failures when recovering from PCI parity error
     - [powerpc*] scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024
     - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs
     - [armhf] gpu: ipu-v3: Fix dev_dbg frequency output
     - [arm64] alternatives: mark patch_alternative() as `noinstr`
     - tlb: hugetlb: Add more sizes to tlb_remove_huge_tlb_entry
     - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup
     - myri10ge: fix an incorrect free for skb in myri10ge_sw_tso
     - drm/amd/display: Revert FEC check in validation
     - drm/amd/display: Fix allocate_mst_payload assert on resume
     - scsi: mvsas: Add PCI ID of RocketRaid 2640
     - scsi: megaraid_sas: Target with invalid LUN ID is deleted during scan
     - drivers: net: slip: fix NPD bug in sl_tx_timeout()
     - mm, page_alloc: fix build_zonerefs_node()
     - mm: fix unexpected zeroed page mapping with zram swap
     - [x86] KVM: x86/mmu: Resolve nx_huge_pages when kvm.ko is loaded
     - ath9k: Properly clear TX status area before reporting to mac80211
     - ath9k: Fix usage of driver-private space in tx_info
     - btrfs: fix root ref counts in error handling in btrfs_get_root_ref
     - btrfs: mark resumed async balance as writing
     - ALSA: hda/realtek: Add quirk for Clevo PD50PNT
     - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers
     - ALSA: pcm: Test for "silence" field in struct "pcm_format_data"
     - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size
     - ipv6: fix panic when forwarding a pkt with no in6 dev
     - drm/amd/display: don't ignore alpha property on pre-multiplied mode
     - drm/amdgpu: Enable gfxoff quirk on MacBook Pro
     - genirq/affinity: Consider that CPUs on nodes can be unbalanced
     - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation
     - dm integrity: fix memory corruption when tag_size is less than digest size
     - smp: Fix offline cpu check in flush_smp_call_function_queue()
     - timers: Fix warning condition in __run_timers()
     - dma-direct: avoid redundant memory sync for swiotlb
     - scsi: iscsi: Fix endpoint reuse regression
     - scsi: iscsi: Fix unbound endpoint error handling
     - ax25: add refcount in ax25_dev to avoid UAF bugs (CVE-2022-1204)
     - ax25: fix reference count leaks of ax25_dev (CVE-2022-1204)
     - ax25: fix UAF bugs of net_device caused by rebinding operation
       (CVE-2022-1204)
     - ax25: Fix refcount leaks caused by ax25_cb_del() (CVE-2022-1204)
     - ax25: fix UAF bug in ax25_send_control()
     - ax25: fix NPD bug in ax25_disconnect (CVE-2022-1199)
     - ax25: Fix NULL pointer dereferences in ax25 timers (CVE-2022-1205)
     - ax25: Fix UAF bugs in ax25 timers (CVE-2022-1205)
     https://www.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.113
     - tracing: Dump stacktrace trigger to the corresponding instance
     - gfs2: assign rgrp glock before compute_bitstructs
     - net/sched: cls_u32: fix netns refcount changes in u32_change()
     - ALSA: usb-audio: Clear MIDI port active flag after draining
     - ALSA: hda/realtek: Add quirk for Clevo NP70PNP
     - dm: fix mempool NULL pointer race when completing IO
     - [armhf] dmaengine: imx-sdma: Fix error checking in sdma_event_remap
     - esp: limit skb_page_frag_refill use to a single page
     - igc: Fix infinite loop in release_swfw_sync
     - igc: Fix BUG: scheduling while atomic
     - rxrpc: Restore removed timer deletion
     - net/smc: Fix sock leak when release after smc_shutdown()
     - net/packet: fix packet_sock xmit return value checking
     - ip6_gre: Avoid updating tunnel->tun_hlen in __gre6_xmit()
     - ip6_gre: Fix skb_under_panic in __gre6_xmit()
     - net/sched: cls_u32: fix possible leak in u32_init_knode()
     - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using
       netdev_master_upper_dev_get_rcu
     - ipv6: make ip6_rt_gc_expire an atomic_t
     - netlink: reset network and mac headers in netlink_dump()
     - net: stmmac: Use readl_poll_timeout_atomic() in atomic state
     - [arm64] mm: Remove [PUD|PMD]_TABLE_BIT from [pud|pmd]_bad()
     - [arm64] mm: fix p?d_leaf()
     - [x86] platform/x86: samsung-laptop: Fix an unsigned comparison which can
       never be negative
     - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the
       constant
     - vxlan: fix error return code in vxlan_fdb_append
     - cifs: Check the IOCB_DIRECT flag, not O_DIRECT
     - [amd64,arm64] net: atlantic: Avoid out-of-bounds indexing
     - mt76: Fix undefined behavior due to shift overflowing the constant
     - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the
       constant
     - [arm64] drm/msm/mdp5: check the return of kzalloc()
     - [arm64] net: macb: Restart tx only if queue pointer is lagging
     - scsi: qedi: Fix failed disconnect handling
     - stat: fix inconsistency between struct stat and struct compat_stat
     - nvme: add a quirk to disable namespace identifiers
     - nvme-pci: disable namespace identifiers for Qemu controllers
     - mm, hugetlb: allow for "high" userspace addresses
     - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex
       cleanup
     - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove()
     - ata: pata_marvell: Check the 'bmdma_addr' beforing reading
     - [amd64,arm64] net: atlantic: invert deep par in pm functions, preventing
       null derefs
     - openvswitch: fix OOB access in reserve_sfa_size()
     - gpio: Request interrupts after IRQ is initialized
     - ASoC: soc-dapm: fix two incorrect uses of list iterator
     - e1000e: Fix possible overflow in LTR decoding
     - [arm*] arm_pmu: Validate single/group leader events
     - sched/pelt: Fix attach_entity_load_avg() corner case
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not
       initialised
     - [arm64,armhf] drm/panel/raspberrypi-touchscreen: Initialise the bridge in
       prepare
     - [powerpc*] KVM: PPC: Fix TCE handling for VFIO
     - [arm*] drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync()
       usage
     - [powerpc*] perf: Fix power9 event alternatives
     - ext4: fix fallocate to use file_modified to update permissions
       consistently
     - ext4: fix symlink file size not match to file content
     - ext4: fix use-after-free in ext4_search_dir
     - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
     - ext4, doc: fix incorrect h_reserved size
     - ext4: fix overhead calculation to account for the reserved gdt blocks
     - ext4: force overhead calculation if the s_overhead_cluster makes no sense
     - can: isotp: stop timeout monitoring when no first frame was sent
     - jbd2: fix a potential race while discarding reserved buffers after an
       abort
     - block/compat_ioctl: fix range check in BLKGETSIZE
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 14
   * [rt] Drop "tcp: Remove superfluous BH-disable around"
   * [rt] Update "tracing: Merge irqflags + preempt counter." for upstream
     changes in 5.10.113
   * [x86] pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
     (Closes: #1006346)
   * floppy: disable FDRAWCMD by default

logrotate (3.18.0-2+deb11u1) bullseye; urgency=medium
 .
   * d/patches: cherry-pick upstream fixes:
     - skip locking if state file is world-readable (CVE-2022-1348)
 .
     - more strict configuration parsing to avoid parsing
       parts of foreign files, e.g. core dumps, (see #1002022)
 .
     - do not use incorrect stat information when verifying an olddir
       configuration after creating the olddir
 .
     - advance pointer in full_write on incomplete write to avoid data
       corruption

lrzip (0.641-1+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Security updates:
     Two issues that allow remote attackers to cause a denial of service via a
     crafted lrz file:
     - CVE-2018-5786: Resolve a potential infinite loop and application hang in the
       get_fileinfo function.
     - CVE-2022-26291: Resolve a multiple concurrency use-after-free between
       the functions zpaq_decompress_buf() and clear_rulist().
     A memory corruption issue:
     - CVE-2022-28044: Resolve a potential heap corruption.

lxc (1:4.0.6-2+deb11u1) bullseye; urgency=medium
 .
   * lxc-download: Switch GPG server.
     The default server used to download gpg keys from has been deprecated,
     and therefore creating containers using the `download` template is now
     broken. This is fixed with an upstream patch by Stéphane Graber that
     points to a valid server. (Closes: #991615)

minidlna (1.3.0+dfsg-2+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2022-26505
     Validate HTTP requests to protect against DNS rebinding, thus forbid
     a remote web server to exfiltrate media files.
     (Closes: #1006798)

mutt (2.0.5-4.1+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Fix uudecode buffer overflow (CVE-2022-1328) (Closes: #1009734)

nano (5.4-2+deb11u1) bullseye; urgency=medium
 .
   * The "Bueno, de verdad, hasta luego, paso" release.
   * Add additional patches from Benno Schulenberg with post 5.4
     crash, docs and general fixes.
   * Change debian-branch to bullseye.

needrestart (3.5-4+deb11u2) bullseye; urgency=medium
 .
   * Add upstream patch 09-cgroupv2 to fix broken detection with cgroupv2.
     Closes: #1005953
needrestart (3.5-4+deb11u1) bullseye-security; urgency=high
 .
   * Add patch 08-anchor-interp-re to fix not anchored regular expressions.
     This fixes CVE-2022-30688.

network-manager (1.30.6-1+deb11u1) bullseye; urgency=medium
 .
   * Set debian-branch to debian/bullseye
   * Revert "supplicant: enable WPA3 for WPA-PSK connections"
     Enabling WPA3 automatically for key_mgmt=wpa-psk is a change in
     behaviour which might have unintended side effects and thus not suitable
     for a stable upload.
 .
 network-manager (1.30.6-1) unstable; urgency=medium
 .
   * New upstream version 1.30.6
   * Rebase patches
network-manager (1.30.6-1) unstable; urgency=medium
 .
   * New upstream version 1.30.6
   * Rebase patches

nginx (1.18.0-6.1+deb11u2) bullseye; urgency=medium
 .
   * d/patches/CVE-2021-3618.patch: Include upstream changeset from NGINX
     that adds mitigations into the Mail module for CVE-2021-3618.patch.
     (Closes: #991328)
nginx (1.18.0-6.1+deb11u1) bullseye; urgency=medium
 .
   * Backport upstream bugfix for segfault in nginx core >= 1.15.0 when
     libnginx-mod-http-lua is loaded and init_worker_by_lua* is used.
     (Closes: #994178)

node-ejs (2.5.7-3+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Sanitize options and new objects (Closes: #1010359, CVE-2022-29078)

node-eventsource (1.0.7-1+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Strip sensitive headers on redirect to different origin
     (Closes: CVE-2022-1650)

node-got (11.8.1+~cs53.13.17-3+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Don't allow redirection to Unix socket (Closes: #1013264, CVE-2022-33987)

node-mermaid (8.7.0+ds+~cs27.17.17-3+deb11u2) bullseye; urgency=medium
 .
   * Team upload
   * Fix for XSS vulnerability in url sanitization (Closes: CVE-2021-43861)
node-mermaid (8.7.0+ds+~cs27.17.17-3+deb11u1) bullseye; urgency=medium
 .
   * Decode html entities before sanitizing (Closes: CVE-2021-23648)

node-minimist (1.2.5+~cs5.3.1-2+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Fix prototype pollution (Closes: CVE-2021-44906)

node-moment (2.29.1+ds-2+deb11u1) bullseye; urgency=medium
 .
   * Avoid loading path-looking locales from fs (Closes: #1009327,
     CVE-2022-24785)

node-node-forge (0.10.0~dfsg-3+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Fix signature verification
     (Closes: CVE-2022-24771, CVE-2022-24772, CVE-2022-24773)

node-raw-body (2.4.1-2+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Drop use-iconv-not-lite.patch, fixes node-express potential DoS

node-sqlite3 (5.0.0+ds1-1+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Fix denial-of-service (Closes: CVE-2022-21227)

node-url-parse (1.5.3-1+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * Handle the case where the port is specified but empty
     (Closes: CVE-2022-0686)
   * Strip all control characters from the beginning of the URL
     (Closes: CVE-2022-0691)

ntfs-3g (1:2017.3.23AR.3-4+deb11u2) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix multiple issues (Closes: #1011770)
     - Used a default usn when the former one cannot be retrieved
       (CVE-2022-30788)
     - Made sure there is no null character in an attribute name
       (CVE-2022-30786)
     - Avoided allocating and reading an attribute beyond its full size
       (CVE-2022-30784)
     - Made sure the client log data does not overflow from restart page
       (CVE-2022-30789)
     - Made sure there is no null character in an attribute name (bis)
       (CVE-2022-30786)
     - Fixed possible out-of-buffer condition in ntfsck (CVE-2021-46790)
     - Fixed operation on little endian data (CVE-2022-30788)
     - Returned an error code when the --help or --version options are
       used (CVE-2022-30783)
     - Hardened the checking of directory offset requested by a readdir
       (CVE-2022-30785, CVE-2022-30787)

nvidia-cuda-toolkit (11.2.2-3+deb11u3) bullseye; urgency=medium
 .
   * Fix nvidia-openjdk-8-jre version ordering.
   * Drop autopkgtest again, it may exceed ci-worker resources while unpacking
     the source package. An equivalent test has been added to src:pycuda (sid).
nvidia-cuda-toolkit (11.2.2-3+deb11u3~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-cuda-toolkit (11.2.2-3+deb11u3) bullseye; urgency=medium
 .
   * Fix nvidia-openjdk-8-jre version ordering.
   * Drop autopkgtest again, it may exceed ci-worker resources while unpacking
     the source package. An equivalent test has been added to src:pycuda (sid).
 .
 nvidia-cuda-toolkit (11.2.2-3+deb11u2) bullseye; urgency=medium
 .
   * Use a snapshot of openjdk-8-jre (8u332-ga-1~deb9u1) for amd64.
   * Use a snapshot of openjdk-8-jre (8u302-b08-1) for ppc64el.
   * Check usability of the java binary.  (Closes: #1008591)
   * nsight-compute: Move the 'sections' folder to a multiarch location.
     (Closes: #1009719)
   * Upload to bullseye.
nvidia-cuda-toolkit (11.2.2-3+deb11u2) bullseye; urgency=medium
 .
   * Use a snapshot of openjdk-8-jre (8u332-ga-1~deb9u1) for amd64.
   * Use a snapshot of openjdk-8-jre (8u302-b08-1) for ppc64el.
   * Check usability of the java binary.  (Closes: #1008591)
   * nsight-compute: Move the 'sections' folder to a multiarch location.
     (Closes: #1009719)
   * Upload to bullseye.

nvidia-graphics-drivers (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.129.06-6) unstable; urgency=medium
 .
   * Minor packaging sync and cleanup.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-${latest}.
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
 .
 nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
nvidia-graphics-drivers (470.129.06-6~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-graphics-drivers (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.129.06-6) unstable; urgency=medium
 .
   * Minor packaging sync and cleanup.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-${latest}.
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
 .
 nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u2) bullseye; urgency=medium
 .
   * Re-enable building libnvidia-nvvm4.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Temporarily disable building libnvidia-nvvm4 to avoid NEW.
 .
 nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
 .
 nvidia-graphics-drivers (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005311)
   * nvidia-detect: Add support for (Tesla) 470 drivers in bullseye.
 .
 nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added an application profile to avoid an image corruption issue in
       Blender, as described at https://developer.blender.org/T76874
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
 .
 nvidia-graphics-drivers (470.82.01-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 470.82.01 (2021-11-02).
     - Fixed a regression which prevented DisplayPort and HDMI 2.1 variable
       refresh rate (VRR) G-SYNC Compatible monitors from functioning correctly
       in variable refresh rate mode, resulting in issues such as flickering.
 .
 nvidia-graphics-drivers (470.82.00-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.82.00 (2021-10-26).
     - Added support for the following GPUs: Matrox D-Series D2450,
       Matrox D-Series D2480, NVIDIA A2.
     - Fixed a bug that can cause a kernel crash in SLI Mosaic configurations.
     - Added support for the EGL_NV_robustness_video_memory_purge extension
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives.
   * nvidia-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative.
     (Closes: #996595)
   * Fix bashisms in upstream scripts.
   * Drop the unusable leftover non-GLVND libegl1-nvidia package.
     (Closes: #996763)
   * nvidia-alternative: Drop unused non-GLVND slave links.
   * Restrict watch file to releases from the 470.xx production branch.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.74-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.74 (2021-09-20).
     - Fixed a bug that could cause GPU applications to exit when resuming
       from suspend.
     - Fixed a regression which resulted in very-high system memory usage for
       Direct3D 12 games when run through vkd3d-proton.
     (Closes: #994942, #995271, #996031, #996164, #996468)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.63.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.63.01 (2021-08-10).
     - Added an application profile to disable FXAA for Firefox to prevent
       visual corruption.
     - Added support for the VK_KHR_wayland_surface extension.
     - Fixed a Vulkan performance regression that affected rFactor2.
     (Closes: #994633)
 .
   [ Andreas Beckmann ]
   * libegl-nvidia0: Ship new library libnvidia-vulkan-producer.so.#VERSION#
     but do not provide alternatives since it is unclear how this undocumented
     SONAME-less library is supposed to be used.
   * Add Build-Depends: libnvidia-egl-wayland1.
   * nvidia-kernel-support: Restore nvidia-modprobe.conf which might have gone
     missing due to bugs in debhelper (#994919) and dpkg (#995387).
     (Closes: #994971)
 .
 nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-graphics-drivers (470.57.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 470.57.02 (2021-07-19).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Fixed a bug that could cause flickering in Blender and Steam when
       running on Xwayland.
     - Fixed a bug that caused GTK+3 applications using the GtkGLArea class
       to crash when running on Xwayland.
     - Added a workaround for DOOM Eternal, which avoids an application bug where
       Vulkan swapchain recreation events are not properly handled. On desktops
       like GNOME where the window is initially redirected to the compositor,
       this may prevent the game from flipping (and thus enabling G-SYNC).
     - Added a workaround for Far Cry 5 when run through DXVK, which avoids a
       shader race condition bug that was previously exposed by new compiler
       optimizations.
     - Added support for the following GPUs: NVIDIA A100 80GB PCIe, NVIDIA A16,
       NVIDIA PG506-243, NVIDIA PG506-242, NVIDIA CMP 90HX, NVIDIA CMP 70HX,
       NVIDIA RTX A2000, NVIDIA T4G.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * libcuda1: Add Provides: libcuda-11.4-1{,-i386}.
   * nvidia-detect: Add support for Tesla 470 drivers.
 .
 nvidia-graphics-drivers (470.42.01-1) experimental; urgency=medium
 .
   * New upstream beta 470.42.01 (2021-06-22).
     - Added support for the following GPUs: A100-PG506-207, A100-PG506-217.
     - Increased the maximum limit on concurrent OpenGL contexts. This
       limit was previously constrained by a fixed-size internal driver
       resource, and is now constrained by available system memory.
     - Applications that exceed the maximum limit on concurrent OpenGL
       contexts will now receive a BadAlloc X error rather than crashing.
     - Fixed a bug that could cause the X server to crash upon shutdown
       with some configurations using GPU screens.
     - Fixed a bug that could cause rendering errors when displaying scaled
       MetaModes using the "Nearest" resampling method.
     - Fixed a bug that could cause OpenGL applications run in PID namespaces to
       hang upon exit, generating warnings such as the following in the X log:
       (WW) NVIDIA: Wait for channel idle timed out.
     - Added support for PRIME Display Offload where both the display offload
       source and display offload sink are driven by the NVIDIA X Driver.
     - Added support for PRIME Display Offload where the display offload source
       is AMDGPU.
     - Fixed a bug that could prevent the driver from applying application
       profiles when running applications through Proton or Wine on a PRIME
       Render Offload configuration.
     - Fixed a bug that could cause NvFBC's "direct capture" to crash the X
       server when certain GLX calls are made during a capture.
     - Added an NVIDIA NGX build for use with Proton and Wine. A new library,
       nvngx.dll, has been added to enable driver-side support for running
       Windows applications which make use of DLSS. Changes to Proton, Wine, and
       other third-party software are needed for this feature.
     - Added support for VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT from the
       VK_EXT_global_priority extension. This enables support for asynchronous
       reprojection in SteamVR.
       VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT is supported on Pascal GPUs and
       newer.
       Global priorities other than VK_QUEUE_GLOBAL_PRIORITY_MEDIUM_EXT require
       root privileges or the CAP_SYS_NICE capability.
     - Added support for the VK_EXT_global_priority_query extension.
     - Added the nvidia-peermem.ko kernel module. This module provides
       Mellanox InfiniBand HCAs (Host Channel Adapters) direct peer-to-peer
       access to NVIDIA GPU memory without need without needing to copy data
       to host memory.
       See the chapter "GPUDirect RDMA Peer Memory Client" in the README
       for details.
     - Added support for the VK_EXT_provoking_vertex extension.
     - Initial support for hardware accelerated OpenGL and Vulkan rendering
       on Xwayland. See the chapter "OpenGL and Vulkan on Xwayland" in the
       README for details.
     - Fixed a bug that could cause intermittent corruption in Wolfenstein:
       Youngblood when using NVIDIA Kepler, Maxwell, Pascal, and Volta GPUs.
     - Fixed a bug that could cause games running with DXVK to crash with Xid 31
       (MMU Fault) errors when using NVIDIA Pascal GPUs.
     - Added support for the VK_EXT_extended_dynamic_state2 extension.
     - Added support for the VK_EXT_color_write_enable extension.
     - Added support for the VK_EXT_vertex_input_dynamic_state extension.
     - Added support for the VK_EXT_ycbcr_2plane_444_formats extension.
     - Added support for the VK_NV_inherited_viewport_scissor extension.
     - NvFBC's "direct capture" mode no longer causes flipping to be
       disabled for applications being captured. G-SYNC can now also be
       used simultaneously with NvFBC direct capture.
     - Deprecated NvIFROpenGL support.  Release 470 will be the last to
       support this functionality.  NvIFROpenGL header files, samples
       and documentation were removed from the NVIDIA Capture SDK 7.1.9
       release.  Future drivers will remove libnvidia-ifr.so and any
       other reference to NvIFROpenGL.
       For details please see:
         https://developer.nvidia.com/nvidia-video-codec-sdk
     - Fixed a bug that prevented Vulkan direct-to-display from working when
       DRM KMS is enabled.
     - Enabled the NVIDIA driver, by default, to attempt to initialize SLI when
       using GPUs with different amounts of video memory.  Previously, this was
       only available when bit 1 was set in the "Coolbits" X config option.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
     - Fixed an issue where vkCreate{Graphics,Compute}Pipeline would sometimes
       crash when the shaders contained resources with no set/binding.
     - Fixed a memory fault in the Vulkan driver when using some smaller
       dimensions of sparse images.
     - Fixed an issue with vkCmdSetViewport when firstViewport is non-zero.
     - Fixed handling of VK_DESCRIPTOR_BINDING_VARIABLE_DESCRIPTOR_COUNT_BIT for
       variable size descriptor bindings.
     * Fixed crash with certain DisplayPort devices.  (Closes: #989069)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update symbols files.
   * libnvidia-nvvm4: New package for the NVVM Compiler library.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
 .
 nvidia-graphics-drivers (465.31-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.31 (2021-05-18).
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (465.27-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.27 (2021-04-29).
 .
   [ Andreas Beckmann ]
   * libcuda1: Add Provides: libcuda-11.3-1{,-i386}.
   * Build the nvidia-peermem kernel module.
 .
 nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.24.02 (2021-04-14).
     * Fixed CVE-2021-1076, CVE-2021-1077.  (Closes: #987216)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5172
   * New upstream beta 465.19.01 (2021-03-30).
     - Added gsp.bin firmware file which is used to offload the GPU initialization
       and management tasks on some GPUs. See the "GSP Firmware" chapter in the
       README for more information.
     - Improved X11 DrawText() performance when rendering stippled text.
     - Fixed a bug that could prevent some hardware configurations with large
       numbers of displays connected to the same GPU from working correctly.
     - Fixed a bug that could cause multi-threaded GLX applications to hang
       while attempting to handle an XError.
     - Fixed a potential crash in the Vulkan driver when clearing images with
       multiple layers.
     - Fixed a bug with the host-visible device-local memory heap, where if an
       allocation failed due to space constraints, it could cause the application
       to crash on future Vulkan function calls.
     - Fixed corruption in the Vulkan driver that sometimes occurred with shadow
       rendering with image arrays.
     - Added support for the VK_KHR_synchronization2 extension.
     - Added support for the VK_KHR_workgroup_memory_explicit_layout extension.
     - Added support for the VK_KHR_zero_initialize_workgroup_memory extension.
     - Added support for linear images for use with host-visible video memory in
       Vulkan.
     - Fixed an issue with OpenGL where imported Vulkan buffers would fail with
       GL_OUT_OF_MEMORY when marked as resident.
     - Fixed a bug that caused the NVIDIA driver to retain an incorrect
       memory mapping of the UEFI system console when booting with the
       kernel parameter pci=realloc. This could cause the console to corrupt
       memory in use by the NVIDIA driver, and vice versa.
     - Runtime D3 Power Management is now enabled by default on supported
       notebook systems with Ampere or newer GPUs. See the chapter titled
       "PCI-Express Runtime D3 (RTD3) Power Management" in the README for
       further details.
     - Updated the NVIDIA X driver to allow OpenGL applications running on an X
       server that has left the active virtual terminal (VT) to continue running
       on the GPU, but with a limited frame rate.
       This functionality is only enabled when the
       NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled.
     - Fix a Vulkan clamping bug where fragment depth values would not be clamped
       to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled.
     - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables.
     - Fixed a bug in compilation of SPIR-V intersection shaders when modules
       with multiple entry points are used.
 .
   [ Andreas Beckmann ]
   * Update symbols files.
   * Ship the gsp.bin firmware blob on amd64.
   * Some power management features were not yet in Linux 2.6.32.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (460.106.00-6) UNRELEASED; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device,
     cc_mkdec and drm_mode_config_has_allow_fb_modifiers changes from
     470.129.06 to fix kernel module build for Linux 5.18.
 .
 nvidia-graphics-drivers (460.106.00-5) UNRELEASED; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
 .
 nvidia-graphics-drivers (460.106.00-4) UNRELEASED; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers (460.106.00-3) UNRELEASED; urgency=medium
 .
   * The Tesla 460 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
 nvidia-graphics-drivers (460.106.00-2) UNRELEASED; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers (460.106.00-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
 nvidia-graphics-drivers (460.91.03-2) UNRELEASED; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
 .
 nvidia-graphics-drivers (460.91.03-1) unstable; urgency=medium
 .
   * New upstream production branch release 460.91.03 (2021-07-20).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Added support for the following GPUs: GeForce RTX 3070 Ti, CMP 50HX.
     * Fixed crash with certain DisplayPort devices.  (Closes: #989069)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
   * debian/gen-control.pl: Support substitutions in the Vcs-Git field.
   * Compute and substitute the Git branch instead of hardcoding it.
 .
 nvidia-graphics-drivers (460.84-1) unstable; urgency=medium
 .
   * New upstream production branch release 460.84 (2021-06-03).
     - Added support for the following GPU: GeForce RTX 3080 Ti.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (460.80-1) unstable; urgency=medium
 .
   * New upstream production branch release 460.80 (2021-05-11).
     - Fixed a bug that could cause AddressSanitizer to report a
       heap-buffer-overflow during initialization of the OpenGL and Vulkan
       libraries.
     - Added support for the following GPUs: GeForce RTX 3050 Ti Laptop GPU,
       GeForce RTX 3050 Laptop GPU, T600 Laptop GPU, T1200 Laptop GPU,
       RTX A5000 Laptop GPU, RTX A4000 Laptop GPU, RTX A3000 Laptop GPU,
       RTX A2000 Laptop GPU.
     - Fixed a bug that could prevent a system from resuming from suspend
       when DisplayPort activity occurred while the system was suspended.
     - Fixed a regression that prevented eglQueryDevicesEXT from correctly
       enumerating GPUs on systems with multiple GPUs where access to the
       GPU device files was restricted for some GPUs.
     - Fixed a regression that could cause system hangs when changing display
       resolution on SLI Mosaic configurations.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Refresh kmods patches to remove fuzz.
nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update kernel-5.7.0-set-memory-array.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
nvidia-graphics-drivers (470.103.01-3~deb11u2) bullseye; urgency=medium
 .
   * Re-enable building libnvidia-nvvm4.
nvidia-graphics-drivers (470.103.01-3~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Temporarily disable building libnvidia-nvvm4 to avoid NEW.
 .
 nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
 .
 nvidia-graphics-drivers (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005311)
   * nvidia-detect: Add support for (Tesla) 470 drivers in bullseye.
 .
 nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
 .
 nvidia-graphics-drivers (470.82.01-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 470.82.01 (2021-11-02).
     - Fixed a regression which prevented DisplayPort and HDMI 2.1 variable
       refresh rate (VRR) G-SYNC Compatible monitors from functioning correctly
       in variable refresh rate mode, resulting in issues such as flickering.
 .
 nvidia-graphics-drivers (470.82.00-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.82.00 (2021-10-26).
     - Added support for the following GPUs: Matrox D-Series D2450,
       Matrox D-Series D2480, NVIDIA A2.
     - Fixed a bug that can cause a kernel crash in SLI Mosaic configurations.
     - Added support for the EGL_NV_robustness_video_memory_purge extension
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives.
   * nvidia-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative.
     (Closes: #996595)
   * Fix bashisms in upstream scripts.
   * Drop the unusable leftover non-GLVND libegl1-nvidia package.
     (Closes: #996763)
   * nvidia-alternative: Drop unused non-GLVND slave links.
   * Restrict watch file to releases from the 470.xx production branch.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.74-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.74 (2021-09-20).
     - Fixed a bug that could cause GPU applications to exit when resuming
       from suspend.
     - Fixed a regression which resulted in very-high system memory usage for
       Direct3D 12 games when run through vkd3d-proton.
     (Closes: #994942, #995271, #996031, #996164, #996468)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.63.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.63.01 (2021-08-10).
     - Added an application profile to disable FXAA for Firefox to prevent
       visual corruption.
     - Added support for the VK_KHR_wayland_surface extension.
     - Fixed a Vulkan performance regression that affected rFactor2.
     (Closes: #994633)
 .
   [ Andreas Beckmann ]
   * libegl-nvidia0: Ship new library libnvidia-vulkan-producer.so.#VERSION#
     but do not provide alternatives since it is unclear how this undocumented
     SONAME-less library is supposed to be used.
   * Add Build-Depends: libnvidia-egl-wayland1.
   * nvidia-kernel-support: Restore nvidia-modprobe.conf which might have gone
     missing due to bugs in debhelper (#994919) and dpkg (#995387).
     (Closes: #994971)
 .
 nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-graphics-drivers (470.57.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 470.57.02 (2021-07-19).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Fixed a bug that could cause flickering in Blender and Steam when
       running on Xwayland.
     - Fixed a bug that caused GTK+3 applications using the GtkGLArea class
       to crash when running on Xwayland.
     - Added a workaround for DOOM Eternal, which avoids an application bug where
       Vulkan swapchain recreation events are not properly handled. On desktops
       like GNOME where the window is initially redirected to the compositor,
       this may prevent the game from flipping (and thus enabling G-SYNC).
     - Added a workaround for Far Cry 5 when run through DXVK, which avoids a
       shader race condition bug that was previously exposed by new compiler
       optimizations.
     - Added support for the following GPUs: NVIDIA A100 80GB PCIe, NVIDIA A16,
       NVIDIA PG506-243, NVIDIA PG506-242, NVIDIA CMP 90HX, NVIDIA CMP 70HX,
       NVIDIA RTX A2000, NVIDIA T4G.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * libcuda1: Add Provides: libcuda-11.4-1{,-i386}.
   * nvidia-detect: Add support for Tesla 470 drivers.
 .
 nvidia-graphics-drivers (470.42.01-1) experimental; urgency=medium
 .
   * New upstream beta 470.42.01 (2021-06-22).
     - Added support for the following GPUs: A100-PG506-207, A100-PG506-217.
     - Increased the maximum limit on concurrent OpenGL contexts. This
       limit was previously constrained by a fixed-size internal driver
       resource, and is now constrained by available system memory.
     - Applications that exceed the maximum limit on concurrent OpenGL
       contexts will now receive a BadAlloc X error rather than crashing.
     - Fixed a bug that could cause the X server to crash upon shutdown
       with some configurations using GPU screens.
     - Fixed a bug that could cause rendering errors when displaying scaled
       MetaModes using the "Nearest" resampling method.
     - Fixed a bug that could cause OpenGL applications run in PID namespaces to
       hang upon exit, generating warnings such as the following in the X log:
       (WW) NVIDIA: Wait for channel idle timed out.
     - Added support for PRIME Display Offload where both the display offload
       source and display offload sink are driven by the NVIDIA X Driver.
     - Added support for PRIME Display Offload where the display offload source
       is AMDGPU.
     - Fixed a bug that could prevent the driver from applying application
       profiles when running applications through Proton or Wine on a PRIME
       Render Offload configuration.
     - Fixed a bug that could cause NvFBC's "direct capture" to crash the X
       server when certain GLX calls are made during a capture.
     - Added an NVIDIA NGX build for use with Proton and Wine. A new library,
       nvngx.dll, has been added to enable driver-side support for running
       Windows applications which make use of DLSS. Changes to Proton, Wine, and
       other third-party software are needed for this feature.
     - Added support for VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT from the
       VK_EXT_global_priority extension. This enables support for asynchronous
       reprojection in SteamVR.
       VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT is supported on Pascal GPUs and
       newer.
       Global priorities other than VK_QUEUE_GLOBAL_PRIORITY_MEDIUM_EXT require
       root privileges or the CAP_SYS_NICE capability.
     - Added support for the VK_EXT_global_priority_query extension.
     - Added the nvidia-peermem.ko kernel module. This module provides
       Mellanox InfiniBand HCAs (Host Channel Adapters) direct peer-to-peer
       access to NVIDIA GPU memory without need without needing to copy data
       to host memory.
       See the chapter "GPUDirect RDMA Peer Memory Client" in the README
       for details.
     - Added support for the VK_EXT_provoking_vertex extension.
     - Initial support for hardware accelerated OpenGL and Vulkan rendering
       on Xwayland. See the chapter "OpenGL and Vulkan on Xwayland" in the
       README for details.
     - Fixed a bug that could cause intermittent corruption in Wolfenstein:
       Youngblood when using NVIDIA Kepler, Maxwell, Pascal, and Volta GPUs.
     - Fixed a bug that could cause games running with DXVK to crash with Xid 31
       (MMU Fault) errors when using NVIDIA Pascal GPUs.
     - Added support for the VK_EXT_extended_dynamic_state2 extension.
     - Added support for the VK_EXT_color_write_enable extension.
     - Added support for the VK_EXT_vertex_input_dynamic_state extension.
     - Added support for the VK_EXT_ycbcr_2plane_444_formats extension.
     - Added support for the VK_NV_inherited_viewport_scissor extension.
     - NvFBC's "direct capture" mode no longer causes flipping to be
       disabled for applications being captured. G-SYNC can now also be
       used simultaneously with NvFBC direct capture.
     - Deprecated NvIFROpenGL support.  Release 470 will be the last to
       support this functionality.  NvIFROpenGL header files, samples
       and documentation were removed from the NVIDIA Capture SDK 7.1.9
       release.  Future drivers will remove libnvidia-ifr.so and any
       other reference to NvIFROpenGL.
       For details please see:
         https://developer.nvidia.com/nvidia-video-codec-sdk
     - Fixed a bug that prevented Vulkan direct-to-display from working when
       DRM KMS is enabled.
     - Enabled the NVIDIA driver, by default, to attempt to initialize SLI when
       using GPUs with different amounts of video memory.  Previously, this was
       only available when bit 1 was set in the "Coolbits" X config option.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
     - Fixed an issue where vkCreate{Graphics,Compute}Pipeline would sometimes
       crash when the shaders contained resources with no set/binding.
     - Fixed a memory fault in the Vulkan driver when using some smaller
       dimensions of sparse images.
     - Fixed an issue with vkCmdSetViewport when firstViewport is non-zero.
     - Fixed handling of VK_DESCRIPTOR_BINDING_VARIABLE_DESCRIPTOR_COUNT_BIT for
       variable size descriptor bindings.
     * Fixed crash with certain DisplayPort devices.  (Closes: #989069)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update symbols files.
   * libnvidia-nvvm4: New package for the NVVM Compiler library.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
 .
 nvidia-graphics-drivers (465.31-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.31 (2021-05-18).
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (465.27-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.27 (2021-04-29).
 .
   [ Andreas Beckmann ]
   * libcuda1: Add Provides: libcuda-11.3-1{,-i386}.
   * Build the nvidia-peermem kernel module.
 .
 nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.24.02 (2021-04-14).
     * Fixed CVE-2021-1076, CVE-2021-1077.  (Closes: #987216)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5172
   * New upstream beta 465.19.01 (2021-03-30).
     - Added gsp.bin firmware file which is used to offload the GPU initialization
       and management tasks on some GPUs. See the "GSP Firmware" chapter in the
       README for more information.
     - Improved X11 DrawText() performance when rendering stippled text.
     - Fixed a bug that could prevent some hardware configurations with large
       numbers of displays connected to the same GPU from working correctly.
     - Fixed a bug that could cause multi-threaded GLX applications to hang
       while attempting to handle an XError.
     - Fixed a potential crash in the Vulkan driver when clearing images with
       multiple layers.
     - Fixed a bug with the host-visible device-local memory heap, where if an
       allocation failed due to space constraints, it could cause the application
       to crash on future Vulkan function calls.
     - Fixed corruption in the Vulkan driver that sometimes occurred with shadow
       rendering with image arrays.
     - Added support for the VK_KHR_synchronization2 extension.
     - Added support for the VK_KHR_workgroup_memory_explicit_layout extension.
     - Added support for the VK_KHR_zero_initialize_workgroup_memory extension.
     - Added support for linear images for use with host-visible video memory in
       Vulkan.
     - Fixed an issue with OpenGL where imported Vulkan buffers would fail with
       GL_OUT_OF_MEMORY when marked as resident.
     - Fixed a bug that caused the NVIDIA driver to retain an incorrect
       memory mapping of the UEFI system console when booting with the
       kernel parameter pci=realloc. This could cause the console to corrupt
       memory in use by the NVIDIA driver, and vice versa.
     - Runtime D3 Power Management is now enabled by default on supported
       notebook systems with Ampere or newer GPUs. See the chapter titled
       "PCI-Express Runtime D3 (RTD3) Power Management" in the README for
       further details.
     - Updated the NVIDIA X driver to allow OpenGL applications running on an X
       server that has left the active virtual terminal (VT) to continue running
       on the GPU, but with a limited frame rate.
       This functionality is only enabled when the
       NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled.
     - Fix a Vulkan clamping bug where fragment depth values would not be clamped
       to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled.
     - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables.
     - Fixed a bug in compilation of SPIR-V intersection shaders when modules
       with multiple entry points are used.
 .
   [ Andreas Beckmann ]
   * Update symbols files.
   * Ship the gsp.bin firmware blob on amd64.
   * Some power management features were not yet in Linux 2.6.32.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (460.106.00-2) UNRELEASED; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.
 .
 nvidia-graphics-drivers (460.106.00-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
 nvidia-graphics-drivers (460.91.03-2) UNRELEASED; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
nvidia-graphics-drivers (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005311)
   * nvidia-detect: Add support for (Tesla) 470 drivers in bullseye.
nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (470.103.01-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
nvidia-graphics-drivers (470.94-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
 .
 nvidia-graphics-drivers (470.82.01-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 470.82.01 (2021-11-02).
     - Fixed a regression which prevented DisplayPort and HDMI 2.1 variable
       refresh rate (VRR) G-SYNC Compatible monitors from functioning correctly
       in variable refresh rate mode, resulting in issues such as flickering.
 .
 nvidia-graphics-drivers (470.82.00-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.82.00 (2021-10-26).
     - Added support for the following GPUs: Matrox D-Series D2450,
       Matrox D-Series D2480, NVIDIA A2.
     - Fixed a bug that can cause a kernel crash in SLI Mosaic configurations.
     - Added support for the EGL_NV_robustness_video_memory_purge extension
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives.
   * nvidia-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative.  (Closes: #996595)
   * Fix bashisms in upstream scripts.
   * Drop the unusable leftover non-GLVND libegl1-nvidia package.
     (Closes: #996763)
   * nvidia-alternative: Drop unused non-GLVND slave links.
   * Restrict watch file to releases from the 470.xx production branch.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.74-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.74 (2021-09-20).
     - Fixed a bug that could cause GPU applications to exit when resuming
       from suspend.
     - Fixed a regression which resulted in very-high system memory usage for
       Direct3D 12 games when run through vkd3d-proton.
     (Closes: #994942, #995271, #996031, #996164, #996468)
   * New upstream release 450 series.
     - Fixed a bug that caused nvidia-drm.ko to crash when loading with
       DRM-KMS enabled (modeset=1) on Linux v5.14.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.63.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.63.01 (2021-08-10).
     - Added an application profile to disable FXAA for Firefox to prevent
       visual corruption.
     - Added support for the VK_KHR_wayland_surface extension.
     - Fixed a Vulkan performance regression that affected rFactor2.
     (Closes: #994633)
 .
   [ Andreas Beckmann ]
   * libegl-nvidia0: Ship new library libnvidia-vulkan-producer.so.#VERSION#
     but do not provide alternatives since it is unclear how this undocumented
     SONAME-less library is supposed to be used.
   * Add Build-Depends: libnvidia-egl-wayland1.
   * nvidia-kernel-support: Restore nvidia-modprobe.conf which might have gone
     missing due to bugs in debhelper (#994919) and dpkg (#995387).
     (Closes: #994971)
 .
 nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-graphics-drivers (470.57.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 470.57.02 (2021-07-19).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Fixed a bug that could cause flickering in Blender and Steam when
       running on Xwayland.
     - Fixed a bug that caused GTK+3 applications using the GtkGLArea class
       to crash when running on Xwayland.
     - Added a workaround for DOOM Eternal, which avoids an application bug where
       Vulkan swapchain recreation events are not properly handled. On desktops
       like GNOME where the window is initially redirected to the compositor,
       this may prevent the game from flipping (and thus enabling G-SYNC).
     - Added a workaround for Far Cry 5 when run through DXVK, which avoids a
       shader race condition bug that was previously exposed by new compiler
       optimizations.
     - Added support for the following GPUs: NVIDIA A100 80GB PCIe, NVIDIA A16,
       NVIDIA PG506-243, NVIDIA PG506-242, NVIDIA CMP 90HX, NVIDIA CMP 70HX,
       NVIDIA RTX A2000, NVIDIA T4G.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * libcuda1: Add Provides: libcuda-11.4-1{,-i386}.
   * nvidia-detect: Add support for Tesla 470 drivers.
 .
 nvidia-graphics-drivers (470.42.01-1) experimental; urgency=medium
 .
   * New upstream beta 470.42.01 (2021-06-22).
     - Added support for the following GPUs: A100-PG506-207, A100-PG506-217.
     - Increased the maximum limit on concurrent OpenGL contexts. This
       limit was previously constrained by a fixed-size internal driver
       resource, and is now constrained by available system memory.
     - Applications that exceed the maximum limit on concurrent OpenGL
       contexts will now receive a BadAlloc X error rather than crashing.
     - Fixed a bug that could cause the X server to crash upon shutdown
       with some configurations using GPU screens.
     - Fixed a bug that could cause rendering errors when displaying scaled
       MetaModes using the "Nearest" resampling method.
     - Fixed a bug that could cause OpenGL applications run in PID namespaces to
       hang upon exit, generating warnings such as the following in the X log:
       (WW) NVIDIA: Wait for channel idle timed out.
     - Added support for PRIME Display Offload where both the display offload
       source and display offload sink are driven by the NVIDIA X Driver.
     - Added support for PRIME Display Offload where the display offload source
       is AMDGPU.
     - Fixed a bug that could prevent the driver from applying application
       profiles when running applications through Proton or Wine on a PRIME
       Render Offload configuration.
     - Fixed a bug that could cause NvFBC's "direct capture" to crash the X
       server when certain GLX calls are made during a capture.
     - Added an NVIDIA NGX build for use with Proton and Wine. A new library,
       nvngx.dll, has been added to enable driver-side support for running
       Windows applications which make use of DLSS. Changes to Proton, Wine, and
       other third-party software are needed for this feature.
     - Added support for VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT from the
       VK_EXT_global_priority extension. This enables support for asynchronous
       reprojection in SteamVR.
       VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT is supported on Pascal GPUs and
       newer.
       Global priorities other than VK_QUEUE_GLOBAL_PRIORITY_MEDIUM_EXT require
       root privileges or the CAP_SYS_NICE capability.
     - Added support for the VK_EXT_global_priority_query extension.
     - Added the nvidia-peermem.ko kernel module. This module provides
       Mellanox InfiniBand HCAs (Host Channel Adapters) direct peer-to-peer
       access to NVIDIA GPU memory without need without needing to copy data
       to host memory.
       See the chapter "GPUDirect RDMA Peer Memory Client" in the README
       for details.
     - Added support for the VK_EXT_provoking_vertex extension.
     - Initial support for hardware accelerated OpenGL and Vulkan rendering
       on Xwayland. See the chapter "OpenGL and Vulkan on Xwayland" in the
       README for details.
     - Fixed a bug that could cause intermittent corruption in Wolfenstein:
       Youngblood when using NVIDIA Kepler, Maxwell, Pascal, and Volta GPUs.
     - Fixed a bug that could cause games running with DXVK to crash with Xid 31
       (MMU Fault) errors when using NVIDIA Pascal GPUs.
     - Added support for the VK_EXT_extended_dynamic_state2 extension.
     - Added support for the VK_EXT_color_write_enable extension.
     - Added support for the VK_EXT_vertex_input_dynamic_state extension.
     - Added support for the VK_EXT_ycbcr_2plane_444_formats extension.
     - Added support for the VK_NV_inherited_viewport_scissor extension.
     - NvFBC's "direct capture" mode no longer causes flipping to be
       disabled for applications being captured. G-SYNC can now also be
       used simultaneously with NvFBC direct capture.
     - Deprecated NvIFROpenGL support.  Release 470 will be the last to
       support this functionality.  NvIFROpenGL header files, samples
       and documentation were removed from the NVIDIA Capture SDK 7.1.9
       release.  Future drivers will remove libnvidia-ifr.so and any
       other reference to NvIFROpenGL.
       For details please see:
         https://developer.nvidia.com/nvidia-video-codec-sdk
     - Fixed a bug that prevented Vulkan direct-to-display from working when
       DRM KMS is enabled.
     - Enabled the NVIDIA driver, by default, to attempt to initialize SLI when
       using GPUs with different amounts of video memory.  Previously, this was
       only available when bit 1 was set in the "Coolbits" X config option.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
     - Fixed an issue where vkCreate{Graphics,Compute}Pipeline would sometimes
       crash when the shaders contained resources with no set/binding.
     - Fixed a memory fault in the Vulkan driver when using some smaller
       dimensions of sparse images.
     - Fixed an issue with vkCmdSetViewport when firstViewport is non-zero.
     - Fixed handling of VK_DESCRIPTOR_BINDING_VARIABLE_DESCRIPTOR_COUNT_BIT for
       variable size descriptor bindings.
     * Fixed crash with certain DisplayPort devices.  (Closes: #989069)
   * New upstream release 390 series.
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update symbols files.
   * libnvidia-nvvm4: New package for the NVVM Compiler library.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
 .
 nvidia-graphics-drivers (465.31-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.31 (2021-05-18).
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (465.27-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.27 (2021-04-29).
 .
   [ Andreas Beckmann ]
   * libcuda1: Add Provides: libcuda-11.3-1{,-i386}.
   * Build the nvidia-peermem kernel module.
 .
 nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.24.02 (2021-04-14).
     * Fixed CVE-2021-1076, CVE-2021-1077.  (Closes: #987216)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5172
   * New upstream beta 465.19.01 (2021-03-30).
     - Added gsp.bin firmware file which is used to offload the GPU initialization
       and management tasks on some GPUs. See the "GSP Firmware" chapter in the
       README for more information.
     - Improved X11 DrawText() performance when rendering stippled text.
     - Fixed a bug that could prevent some hardware configurations with large
       numbers of displays connected to the same GPU from working correctly.
     - Fixed a bug that could cause multi-threaded GLX applications to hang
       while attempting to handle an XError.
     - Fixed a potential crash in the Vulkan driver when clearing images with
       multiple layers.
     - Fixed a bug with the host-visible device-local memory heap, where if an
       allocation failed due to space constraints, it could cause the application
       to crash on future Vulkan function calls.
     - Fixed corruption in the Vulkan driver that sometimes occurred with shadow
       rendering with image arrays.
     - Added support for the VK_KHR_synchronization2 extension.
     - Added support for the VK_KHR_workgroup_memory_explicit_layout extension.
     - Added support for the VK_KHR_zero_initialize_workgroup_memory extension.
     - Added support for linear images for use with host-visible video memory in
       Vulkan.
     - Fixed an issue with OpenGL where imported Vulkan buffers would fail with
       GL_OUT_OF_MEMORY when marked as resident.
     - Fixed a bug that caused the NVIDIA driver to retain an incorrect
       memory mapping of the UEFI system console when booting with the
       kernel parameter pci=realloc. This could cause the console to corrupt
       memory in use by the NVIDIA driver, and vice versa.
     - Runtime D3 Power Management is now enabled by default on supported
       notebook systems with Ampere or newer GPUs. See the chapter titled
       "PCI-Express Runtime D3 (RTD3) Power Management" in the README for
       further details.
     - Updated the NVIDIA X driver to allow OpenGL applications running on an X
       server that has left the active virtual terminal (VT) to continue running
       on the GPU, but with a limited frame rate.
       This functionality is only enabled when the
       NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled.
     - Fix a Vulkan clamping bug where fragment depth values would not be clamped
       to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled.
     - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables.
     - Fixed a bug in compilation of SPIR-V intersection shaders when modules
       with multiple entry points are used.
 .
   [ Andreas Beckmann ]
   * Update symbols files.
   * Ship the gsp.bin firmware blob on amd64.
   * Some power management features were not yet in Linux 2.6.32.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (460.106.00-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
 nvidia-graphics-drivers (460.91.03-2) UNRELEASED; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
nvidia-graphics-drivers (470.82.00-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.82.00 (2021-10-26).
     - Added support for the following GPUs: Matrox D-Series D2450,
       Matrox D-Series D2480, NVIDIA A2.
     - Fixed a bug that can cause a kernel crash in SLI Mosaic configurations.
     - Added support for the EGL_NV_robustness_video_memory_purge extension
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives.
   * nvidia-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative.  (Closes: #996595)
   * Fix bashisms in upstream scripts.
   * Drop the unusable leftover non-GLVND libegl1-nvidia package.
     (Closes: #996763)
   * nvidia-alternative: Drop unused non-GLVND slave links.
   * Restrict watch file to releases from the 470.xx production branch.
   * Update lintian overrides.
nvidia-graphics-drivers (470.74-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.74 (2021-09-20).
     - Fixed a bug that could cause GPU applications to exit when resuming
       from suspend.
     - Fixed a regression which resulted in very-high system memory usage for
       Direct3D 12 games when run through vkd3d-proton.
     (Closes: #994942, #995271, #996031, #996164)
   * New upstream release 450 series.
     - Fixed a bug that could cause the /proc/driver/nvidia/suspend power
       management interface to fail to preserve and restore video memory
       allocations when the NVreg_TemporaryFilePath module parameter for
       nvidia.ko specified an invalid path.
   * New upstream release 390 series.
     - Fixed a bug that caused nvidia-drm.ko to crash when loading with
       DRM-KMS enabled (modeset=1) on Linux v5.14.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
nvidia-graphics-drivers (470.63.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.63.01 (2021-08-10).
     - Added an application profile to disable FXAA for Firefox to prevent
       visual corruption.
     - Added support for the VK_KHR_wayland_surface extension.
     - Fixed a Vulkan performance regression that affected rFactor2.
     (Closes: #994633)
 .
   [ Andreas Beckmann ]
   * libegl-nvidia0: Ship new library libnvidia-vulkan-producer.so.#VERSION#
     but do not provide alternatives since it is unclear how this undocumented
     SONAME-less library is supposed to be used.
   * Add Build-Depends: libnvidia-egl-wayland-dev.
   * nvidia-kernel-support: Restore nvidia-modprobe.conf which might have gone
     missing due to bugs in debhelper (#994919) and dpkg (#995387).
     (Closes: #994971)
nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
nvidia-graphics-drivers (470.57.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 470.57.02 (2021-07-19).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Fixed a bug that could cause flickering in Blender and Steam when
       running on Xwayland.
     - Fixed a bug that caused GTK+3 applications using the GtkGLArea class
       to crash when running on Xwayland.
     - Added a workaround for DOOM Eternal, which avoids an application bug where
       Vulkan swapchain recreation events are not properly handled. On desktops
       like GNOME where the window is initially redirected to the compositor,
       this may prevent the game from flipping (and thus enabling G-SYNC).
     - Added a workaround for Far Cry 5 when run through DXVK, which avoids a
       shader race condition bug that was previously exposed by new compiler
       optimizations.
     - Added support for the following GPUs: NVIDIA A100 80GB PCIe, NVIDIA A16,
       NVIDIA PG506-243, NVIDIA PG506-242, NVIDIA CMP 90HX, NVIDIA CMP 70HX,
       NVIDIA RTX A2000, NVIDIA T4G.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * libcuda1: Add Provides: libcuda-11.4-1{,-i386}.
   * nvidia-detect: Add support for Tesla 470 drivers.
nvidia-graphics-drivers (470.42.01-1) experimental; urgency=medium
 .
   * New upstream beta 470.42.01 (2021-06-22).
     - Added support for the following GPUs: A100-PG506-207, A100-PG506-217.
     - Increased the maximum limit on concurrent OpenGL contexts. This
       limit was previously constrained by a fixed-size internal driver
       resource, and is now constrained by available system memory.
     - Applications that exceed the maximum limit on concurrent OpenGL
       contexts will now receive a BadAlloc X error rather than crashing.
     - Fixed a bug that could cause the X server to crash upon shutdown
       with some configurations using GPU screens.
     - Fixed a bug that could cause rendering errors when displaying scaled
       MetaModes using the "Nearest" resampling method.
     - Fixed a bug that could cause OpenGL applications run in PID namespaces to
       hang upon exit, generating warnings such as the following in the X log:
       (WW) NVIDIA: Wait for channel idle timed out.
     - Added support for PRIME Display Offload where both the display offload
       source and display offload sink are driven by the NVIDIA X Driver.
     - Added support for PRIME Display Offload where the display offload source
       is AMDGPU.
     - Fixed a bug that could prevent the driver from applying application
       profiles when running applications through Proton or Wine on a PRIME
       Render Offload configuration.
     - Fixed a bug that could cause NvFBC's "direct capture" to crash the X
       server when certain GLX calls are made during a capture.
     - Added an NVIDIA NGX build for use with Proton and Wine. A new library,
       nvngx.dll, has been added to enable driver-side support for running
       Windows applications which make use of DLSS. Changes to Proton, Wine, and
       other third-party software are needed for this feature.
     - Added support for VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT from the
       VK_EXT_global_priority extension. This enables support for asynchronous
       reprojection in SteamVR.
       VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT is supported on Pascal GPUs and
       newer.
       Global priorities other than VK_QUEUE_GLOBAL_PRIORITY_MEDIUM_EXT require
       root privileges or the CAP_SYS_NICE capability.
     - Added support for the VK_EXT_global_priority_query extension.
     - Added the nvidia-peermem.ko kernel module. This module provides
       Mellanox InfiniBand HCAs (Host Channel Adapters) direct peer-to-peer
       access to NVIDIA GPU memory without need without needing to copy data
       to host memory.
       See the chapter "GPUDirect RDMA Peer Memory Client" in the README
       for details.
     - Added support for the VK_EXT_provoking_vertex extension.
     - Initial support for hardware accelerated OpenGL and Vulkan rendering
       on Xwayland. See the chapter "OpenGL and Vulkan on Xwayland" in the
       README for details.
     - Fixed a bug that could cause intermittent corruption in Wolfenstein:
       Youngblood when using NVIDIA Kepler, Maxwell, Pascal, and Volta GPUs.
     - Fixed a bug that could cause games running with DXVK to crash with Xid 31
       (MMU Fault) errors when using NVIDIA Pascal GPUs.
     - Added support for the VK_EXT_extended_dynamic_state2 extension.
     - Added support for the VK_EXT_color_write_enable extension.
     - Added support for the VK_EXT_vertex_input_dynamic_state extension.
     - Added support for the VK_EXT_ycbcr_2plane_444_formats extension.
     - Added support for the VK_NV_inherited_viewport_scissor extension.
     - NvFBC's "direct capture" mode no longer causes flipping to be
       disabled for applications being captured. G-SYNC can now also be
       used simultaneously with NvFBC direct capture.
     - Deprecated NvIFROpenGL support.  Release 470 will be the last to
       support this functionality.  NvIFROpenGL header files, samples
       and documentation were removed from the NVIDIA Capture SDK 7.1.9
       release.  Future drivers will remove libnvidia-ifr.so and any
       other reference to NvIFROpenGL.
       For details please see:
         https://developer.nvidia.com/nvidia-video-codec-sdk
     - Fixed a bug that prevented Vulkan direct-to-display from working when
       DRM KMS is enabled.
     - Enabled the NVIDIA driver, by default, to attempt to initialize SLI when
       using GPUs with different amounts of video memory.  Previously, this was
       only available when bit 1 was set in the "Coolbits" X config option.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
     - Fixed an issue where vkCreate{Graphics,Compute}Pipeline would sometimes
       crash when the shaders contained resources with no set/binding.
     - Fixed a memory fault in the Vulkan driver when using some smaller
       dimensions of sparse images.
     - Fixed an issue with vkCmdSetViewport when firstViewport is non-zero.
     - Fixed handling of VK_DESCRIPTOR_BINDING_VARIABLE_DESCRIPTOR_COUNT_BIT for
       variable size descriptor bindings.
   * New upstream release 460 series.
     - Added support for the following GPUs: GeForce RTX 3070 Ti, CMP 50HX.
   * New upstream release 390 series.
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update symbols files.
   * libnvidia-nvvm4: New package for the NVVM Compiler library.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
nvidia-graphics-drivers (465.31-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.31 (2021-05-18).
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
nvidia-graphics-drivers (465.27-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.27 (2021-04-29).
   * New upstream release 460 series.
     - Added support for the following GPUs: T600 Laptop GPU, T1200 Laptop GPU,
       RTX A5000 Laptop GPU, RTX A4000 Laptop GPU, RTX A3000 Laptop GPU,
       RTX A2000 Laptop GPU.
     - Fixed a bug that could prevent a system from resuming from suspend
       when DisplayPort activity occurred while the system was suspended.
     - Fixed a regression that prevented eglQueryDevicesEXT from correctly
       enumerating GPUs on systems with multiple GPUs where access to the
       GPU device files was restricted for some GPUs.
     - Fixed a regression that could cause system hangs when changing display
       resolution on SLI Mosaic configurations.
   * New upstream release 450 series.
     - Fixed a bug that could result in blank displays when driving multiple
       displays at the same resolution using active DisplayPort dongles.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * libcuda1: Add Provides: libcuda-11.3-1{,-i386}.
   * Build the nvidia-peermem kernel module.
nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.24.02 (2021-04-14).
     * Fixed CVE-2021-1076, CVE-2021-1077.  (Closes: #987216)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5172
   * New upstream beta 465.19.01 (2021-03-30).
     - Improved X11 DrawText() performance when rendering stippled text.
     - Fixed a bug that could prevent some hardware configurations with large
       numbers of displays connected to the same GPU from working correctly.
     - Fixed a bug that could cause multi-threaded GLX applications to hang
       while attempting to handle an XError.
     - Fixed a potential crash in the Vulkan driver when clearing images with
       multiple layers.
     - Fixed a bug with the host-visible device-local memory heap, where if an
       allocation failed due to space constraints, it could cause the application
       to crash on future Vulkan function calls.
     - Fixed corruption in the Vulkan driver that sometimes occurred with shadow
       rendering with image arrays.
     - Added support for the VK_KHR_synchronization2 extension.
     - Added support for the VK_KHR_workgroup_memory_explicit_layout extension.
     - Added support for the VK_KHR_zero_initialize_workgroup_memory extension.
     - Added support for linear images for use with host-visible video memory in
       Vulkan.
     - Fixed an issue with OpenGL where imported Vulkan buffers would fail with
       GL_OUT_OF_MEMORY when marked as resident.
     - Fixed a bug that caused the NVIDIA driver to retain an incorrect
       memory mapping of the UEFI system console when booting with the
       kernel parameter pci=realloc. This could cause the console to corrupt
       memory in use by the NVIDIA driver, and vice versa.
     - Runtime D3 Power Management is now enabled by default on supported
       notebook systems with Ampere or newer GPUs. See the chapter titled
       "PCI-Express Runtime D3 (RTD3) Power Management" in the README for
       further details.
     - Updated the NVIDIA X driver to allow OpenGL applications running on an X
       server that has left the active virtual terminal (VT) to continue running
       on the GPU, but with a limited frame rate.
       This functionality is only enabled when the
       NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled.
     - Fix a Vulkan clamping bug where fragment depth values would not be clamped
       to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled.
     - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables.
     - Fixed a bug in compilation of SPIR-V intersection shaders when modules
       with multiple entry points are used.
 .
   [ Andreas Beckmann ]
   * Update symbols files.
   * Ship the firmware blob on amd64.
   * Some power management features were not yet in Linux 2.6.32.
   * Update lintian overrides.
   * Upload to experimental.

nvidia-graphics-drivers-legacy-390xx (390.151-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-legacy-390xx (390.151-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.151 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28185.  (Closes: #1011142, #1004849)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Fixed a bug which prevented kernel modules linked from precompiled
       kernel interface object files from being loaded on recent Linux
       kernels. This affected custom packages which were prepared with
       nvidia-installer's --add-this-kernel option, for example.
     - Fixed a driver installation failure on Linux kernel 5.17 release
       candidates, where the NVIDIA kernel module failed to build with error
       "implicit declaration of function 'PDE'".
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Work around architecture misdetection when building the kernel modules in
     an armhf environment on an arm64 host.  (Closes: #1010230)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-4) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-3) unstable; urgency=medium
 .
   * Fix incomplete backport of pde_data changes from 470.103.01.
     (Closes: #1005909)
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005804)
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.147 (2021-12-16).
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-legacy-390xx-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * nvidia-legacy-390xx-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-legacy-390xx (390.144-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994814)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).  (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-graphics-drivers-legacy-390xx (390.144-1~deb10u1) buster; urgency=medium
 .
   * Rebuild for buster.
nvidia-graphics-drivers-legacy-390xx (390.151-1~deb10u1) buster; urgency=medium
 .
   * Rebuild for buster.
 .
 nvidia-graphics-drivers-legacy-390xx (390.151-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-legacy-390xx (390.151-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.151 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28185.  (Closes: #1011142, #1004849)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Fixed a bug which prevented kernel modules linked from precompiled
       kernel interface object files from being loaded on recent Linux
       kernels. This affected custom packages which were prepared with
       nvidia-installer's --add-this-kernel option, for example.
     - Fixed a driver installation failure on Linux kernel 5.17 release
       candidates, where the NVIDIA kernel module failed to build with error
       "implicit declaration of function 'PDE'".
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Work around architecture misdetection when building the kernel modules in
     an armhf environment on an arm64 host.  (Closes: #1010230)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-4) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-3) unstable; urgency=medium
 .
   * Fix incomplete backport of pde_data changes from 470.103.01.
     (Closes: #1005909)
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005804)
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.147 (2021-12-16).
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-legacy-390xx-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * nvidia-legacy-390xx-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-legacy-390xx (390.144-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994814)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).  (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-graphics-drivers-legacy-390xx (390.147-4) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
nvidia-graphics-drivers-legacy-390xx (390.147-3) unstable; urgency=medium
 .
   * Fix incomplete backport of pde_data changes from 510.39.01.
nvidia-graphics-drivers-legacy-390xx (390.147-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005804)
   * Backport pde_data changes from 510.39.01 to fix kernel module build for
     Linux 5.17.
nvidia-graphics-drivers-legacy-390xx (390.147-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.147 (2021-12-16).
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-legacy-390xx-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * nvidia-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * Update lintian overrides.
nvidia-graphics-drivers-legacy-390xx (390.147-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-graphics-drivers-legacy-390xx (390.147-1) unstable; urgency=medium
 .
   * New upstream legacy branch release 390.147 (2021-12-16).
     - Worked around a bug in Meson builds of libglvnd 1.3.0 that caused the
       nvidia_icd.json file to be installed in the wrong location.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-legacy-390xx-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * nvidia-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-legacy-390xx (390.144-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994814)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).  (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-graphics-drivers-legacy-390xx (390.144-1~deb10u1) buster; urgency=medium
 .
   * Rebuild for buster.
nvidia-graphics-drivers-legacy-390xx (390.144-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).  (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.

nvidia-graphics-drivers-tesla-418 (418.226.00-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-6) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask and acpi_bus_get_device
     changes from 470.129.06 to fix kernel module build for Linux 5.18.
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-3) unstable; urgency=medium
 .
   * The Tesla 418 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005405)
   * nvidia-tesla-418-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 418.226.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-418-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-418 (418.211.00-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-graphics-drivers-tesla-418 (418.226.00-6~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-6) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask and acpi_bus_get_device
     changes from 470.129.06 to fix kernel module build for Linux 5.18.
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-3) unstable; urgency=medium
 .
   * The Tesla 418 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005405)
   * nvidia-tesla-418-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
 .
 nvidia-graphics-drivers-tesla-418 (418.226.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 418.226.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-418-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-418 (418.211.00-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-graphics-drivers-tesla-418 (418.226.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
nvidia-graphics-drivers-tesla-418 (418.226.00-4) unstable; urgency=medium
 .
   * Fix kernel module build for ppc64el.
nvidia-graphics-drivers-tesla-418 (418.226.00-3) unstable; urgency=medium
 .
   * The Tesla 418 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
nvidia-graphics-drivers-tesla-418 (418.226.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 510.39.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005405)
   * nvidia-tesla-418-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
nvidia-graphics-drivers-tesla-418 (418.226.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 418.226.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-418-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
   * Fix bashisms in upstream scripts (470.82.00-1).
   * libegl1-mesa is a transitional package since buster (470.82.00-1).
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-418 (418.211.00-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.

nvidia-graphics-drivers-tesla-450 (450.191.01-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-450 (450.191.01-2) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device
     and cc_mkdec changes from 470.129.06 to fix kernel module build for
     Linux 5.18.  (Closes: #1013130)
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-450 (450.191.01-1) unstable; urgency=medium
 .
   * New upstream Tesla release 450.191.01 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28185, CVE-2022-28192. (Closes: #1011144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-450 (450.172.01-3) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.  (Closes: #976901)
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.  (Closes: #1009740)
   * Refresh patches.
nvidia-graphics-drivers-tesla-450 (450.191.01-2~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-graphics-drivers-tesla-450 (450.191.01-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-450 (450.191.01-2) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device
     and cc_mkdec changes from 470.129.06 to fix kernel module build for
     Linux 5.18.  (Closes: #1013130)
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-450 (450.191.01-1) unstable; urgency=medium
 .
   * New upstream Tesla release 450.191.01 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28185, CVE-2022-28192. (Closes: #1011144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-450 (450.172.01-3) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.  (Closes: #976901)
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.  (Closes: #1009740)
   * Refresh patches.
nvidia-graphics-drivers-tesla-450 (450.191.01-1) unstable; urgency=medium
 .
   * New upstream Tesla release 450.191.01 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28185, CVE-2022-28192. (Closes: #1011144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
nvidia-graphics-drivers-tesla-450 (450.172.01-3) unstable; urgency=medium
 .
   * Update kernel-5.7.0-set-memory-array.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.  (Closes: #1009740)
nvidia-graphics-drivers-tesla-450 (450.172.01-2) unstable; urgency=medium
 .
   * Backport pde_data changes from 510.39.01 to fix kernel module build for
     Linux 5.17.
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005932)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip build for -rt
     kernels, not supported upstream.
   * Declare Testsuite: autopkgtest-pkg-dkms.

nvidia-graphics-drivers-tesla-460 (460.106.00-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-6) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device,
     cc_mkdec and drm_mode_config_has_allow_fb_modifiers changes from
     470.129.06 to fix kernel module build for Linux 5.18.
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-3) unstable; urgency=medium
 .
   * The Tesla 460 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * Turn metapackages into transitional packages to aid switching to
     nvidia-graphics-drivers-tesla-470.
     (Closes: #1004852, #1005933, #1011145)
   * Provide less virtual packages.
   * Remove the Tesla 460 driver from the nvidia alternative.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005406)
   * nvidia-tesla-460-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-460-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * Drop the unusable leftover non-GLVND libegl1-nvidia-tesla-460 package
     (470.82.00-1).
   * nvidia-tesla-460-alternative: Drop unused non-GLVND slave links
     (470.82.00-1).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-460 (460.91.03-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-460 (460.106.00-6~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-6) unstable; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device,
     cc_mkdec and drm_mode_config_has_allow_fb_modifiers changes from
     470.129.06 to fix kernel module build for Linux 5.18.
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-3) unstable; urgency=medium
 .
   * The Tesla 460 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * Turn metapackages into transitional packages to aid switching to
     nvidia-graphics-drivers-tesla-470.
     (Closes: #1004852, #1005933, #1011145)
   * Provide less virtual packages.
   * Remove the Tesla 460 driver from the nvidia alternative.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 470.103.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005406)
   * nvidia-tesla-460-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-460-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
     (Closes: #996595)
   * Fix bashisms in upstream scripts (470.82.00-1).
   * Drop the unusable leftover non-GLVND libegl1-nvidia-tesla-460 package
     (470.82.00-1).
   * nvidia-tesla-460-alternative: Drop unused non-GLVND slave links
     (470.82.00-1).
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-460 (460.91.03-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-460 (460.106.00-5) unstable; urgency=medium
 .
   * Backport linker scripts changes from 510.60.02.
   * Refresh patches.
   * Bump Standards-Version to 4.6.1. No changes needed.
nvidia-graphics-drivers-tesla-460 (460.106.00-4) unstable; urgency=medium
 .
   * Update kernel-5.7.0-set-memory-array.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
nvidia-graphics-drivers-tesla-460 (460.106.00-3) unstable; urgency=medium
 .
   * The Tesla 460 driver series has been declared as End-of-Life by
     NVIDIA. No further updates fixing security issues, critical bugs, or
     adding support for new Xorg or Linux releases will be issued.
     https://docs.nvidia.com/datacenter/tesla/drivers/
 .
   * Turn metapackages into transitional packages to aid switching to
     nvidia-graphics-drivers-tesla-470.  (Closes: #1004852, #1005933)
   * Provide less virtual packages.
   * Remove the Tesla 460 driver from the nvidia alternative.
nvidia-graphics-drivers-tesla-460 (460.106.00-2) unstable; urgency=medium
 .
   * Backport stdarg.h and stddef.h changes from 495.44 to fix kernel module
     build for Linux 5.16.
   * Backport pde_data changes from 510.39.01 to fix kernel module build for
     Linux 5.17.  (Closes: #1005406)
   * nvidia-tesla-460-kernel-support: Provide
     /etc/modprobe.d/nvidia-options.conf as a template taking into account the
     module renaming. This is a slave alternative of the nvidia alternative
     (470.86-1).  (Closes: #999670)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip build for -rt
     kernels, not supported upstream.
   * Declare Testsuite: autopkgtest-pkg-dkms.
nvidia-graphics-drivers-tesla-460 (460.106.00-1) unstable; urgency=medium
 .
   * New upstream Tesla release 460.106.00 (2021-10-26).
 .
   [ Andreas Beckmann ]
   * bug-script: Show the nvidia and glx alternatives (470.82.00-1).
   * nvidia-tesla-460-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative (470.82.00-1).
   * Fix bashisms in upstream scripts (470.82.00-1).
   * Drop the unusable leftover non-GLVND libegl1-nvidia-tesla-460 package
     (470.82.00-1).
   * nvidia-tesla-460-alternative: Drop unused non-GLVND slave links
     (470.82.00-1).
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-460 (460.91.03-2) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore
     (470.57.02-3).
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.

nvidia-graphics-drivers-tesla-470 (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-6) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
   * Build nvidia-cuda-mps from the Tesla driver.
 .
 nvidia-graphics-drivers (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.129.06-6) unstable; urgency=medium
 .
   * Minor packaging sync and cleanup.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-${latest}.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-5) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
   * Temporarily disable autopkgtest on ppc64el.  (Cf. #1012245)
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-4) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-3) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-2) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011146)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
 nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u2) bullseye; urgency=medium
 .
   * Re-enable building libnvidia-nvvm4.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Temporarily disable building libnvidia-nvvm4 to avoid NEW.
 .
 nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
nvidia-graphics-drivers-tesla-470 (470.129.06-6~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-6) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
   * Build nvidia-cuda-mps from the Tesla driver.
 .
 nvidia-graphics-drivers (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.129.06-6) unstable; urgency=medium
 .
   * Minor packaging sync and cleanup.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-${latest}.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-5) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
   * Temporarily disable autopkgtest on ppc64el.  (Cf. #1012245)
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-4) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-3) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-2) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
 .
 nvidia-graphics-drivers-tesla-470 (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011146)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
 nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u2) bullseye; urgency=medium
 .
   * Re-enable building libnvidia-nvvm4.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Temporarily disable building libnvidia-nvvm4 to avoid NEW.
 .
 nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
 .
 nvidia-graphics-drivers-tesla-470 (470.103.01-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005934)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
 .
 nvidia-graphics-drivers (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005311)
   * nvidia-detect: Add support for (Tesla) 470 drivers in bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.103.01-1) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.  (Closes: #1004853)
 .
 nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added an application profile to avoid an image corruption issue in
       Blender, as described at https://developer.blender.org/T76874
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
 .
 nvidia-graphics-drivers-tesla-470 (470.82.01-1) unstable; urgency=medium
 .
   * New upstream Tesla release 470.82.01 (2021-11-02).
     - Fixed a regression which prevented DisplayPort and HDMI 2.1 variable
       refresh rate (VRR) G-SYNC Compatible monitors from functioning correctly
       in variable refresh rate mode, resulting in issues such as flickering.
 .
 nvidia-graphics-drivers (470.82.00-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.82.00 (2021-10-26).
     - Added support for the following GPUs: Matrox D-Series D2450,
       Matrox D-Series D2480, NVIDIA A2.
     - Fixed a bug that can cause a kernel crash in SLI Mosaic configurations.
     - Added support for the EGL_NV_robustness_video_memory_purge extension
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * bug-script: Show the nvidia and glx alternatives.
   * nvidia-alternative: libnvidia-cfg.so.1 on its own is not
     sufficient to activate a nvidia alternative.
     (Closes: #996595)
   * Fix bashisms in upstream scripts.
   * Drop the unusable leftover non-GLVND libegl1-nvidia package.
     (Closes: #996763)
   * nvidia-alternative: Drop unused non-GLVND slave links.
   * Restrict watch file to releases from the 470.xx production branch.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.74-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.74 (2021-09-20).
     - Fixed a bug that could cause GPU applications to exit when resuming
       from suspend.
     - Fixed a regression which resulted in very-high system memory usage for
       Direct3D 12 games when run through vkd3d-proton.
     (Closes: #994942, #995271, #996031, #996164, #996468)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.63.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.63.01 (2021-08-10).
     - Added an application profile to disable FXAA for Firefox to prevent
       visual corruption.
     - Added support for the VK_KHR_wayland_surface extension.
     - Fixed a Vulkan performance regression that affected rFactor2.
     (Closes: #994633)
 .
   [ Andreas Beckmann ]
   * libegl-nvidia0: Ship new library libnvidia-vulkan-producer.so.#VERSION#
     but do not provide alternatives since it is unclear how this undocumented
     SONAME-less library is supposed to be used.
   * Add Build-Depends: libnvidia-egl-wayland1.
   * nvidia-kernel-support: Restore nvidia-modprobe.conf which might have gone
     missing due to bugs in debhelper (#994919) and dpkg (#995387).
     (Closes: #994971)
 .
 nvidia-graphics-drivers-tesla-470 (470.57.02-2) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-graphics-drivers-tesla-470 (470.57.02-1) unstable; urgency=medium
 .
   * Fork as new source package, rename everything to include '-tesla-470'.
   * Do not build 'unversioned' packages from this source.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (470.57.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 470.57.02 (2021-07-19).
     * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095.  (Closes: #991351)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5211
     - Fixed a bug that could cause flickering in Blender and Steam when
       running on Xwayland.
     - Fixed a bug that caused GTK+3 applications using the GtkGLArea class
       to crash when running on Xwayland.
     - Added a workaround for DOOM Eternal, which avoids an application bug where
       Vulkan swapchain recreation events are not properly handled. On desktops
       like GNOME where the window is initially redirected to the compositor,
       this may prevent the game from flipping (and thus enabling G-SYNC).
     - Added a workaround for Far Cry 5 when run through DXVK, which avoids a
       shader race condition bug that was previously exposed by new compiler
       optimizations.
     - Added support for the following GPUs: NVIDIA A100 80GB PCIe, NVIDIA A16,
       NVIDIA PG506-243, NVIDIA PG506-242, NVIDIA CMP 90HX, NVIDIA CMP 70HX,
       NVIDIA RTX A2000, NVIDIA T4G.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * libcuda1: Add Provides: libcuda-11.4-1{,-i386}.
   * nvidia-detect: Add support for Tesla 470 drivers.
 .
 nvidia-graphics-drivers (470.42.01-1) experimental; urgency=medium
 .
   * New upstream beta 470.42.01 (2021-06-22).
     - Added support for the following GPUs: A100-PG506-207, A100-PG506-217.
     - Increased the maximum limit on concurrent OpenGL contexts. This
       limit was previously constrained by a fixed-size internal driver
       resource, and is now constrained by available system memory.
     - Applications that exceed the maximum limit on concurrent OpenGL
       contexts will now receive a BadAlloc X error rather than crashing.
     - Fixed a bug that could cause the X server to crash upon shutdown
       with some configurations using GPU screens.
     - Fixed a bug that could cause rendering errors when displaying scaled
       MetaModes using the "Nearest" resampling method.
     - Fixed a bug that could cause OpenGL applications run in PID namespaces to
       hang upon exit, generating warnings such as the following in the X log:
       (WW) NVIDIA: Wait for channel idle timed out.
     - Added support for PRIME Display Offload where both the display offload
       source and display offload sink are driven by the NVIDIA X Driver.
     - Added support for PRIME Display Offload where the display offload source
       is AMDGPU.
     - Fixed a bug that could prevent the driver from applying application
       profiles when running applications through Proton or Wine on a PRIME
       Render Offload configuration.
     - Fixed a bug that could cause NvFBC's "direct capture" to crash the X
       server when certain GLX calls are made during a capture.
     - Added an NVIDIA NGX build for use with Proton and Wine. A new library,
       nvngx.dll, has been added to enable driver-side support for running
       Windows applications which make use of DLSS. Changes to Proton, Wine, and
       other third-party software are needed for this feature.
     - Added support for VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT from the
       VK_EXT_global_priority extension. This enables support for asynchronous
       reprojection in SteamVR.
       VK_QUEUE_GLOBAL_PRIORITY_REALTIME_EXT is supported on Pascal GPUs and
       newer.
       Global priorities other than VK_QUEUE_GLOBAL_PRIORITY_MEDIUM_EXT require
       root privileges or the CAP_SYS_NICE capability.
     - Added support for the VK_EXT_global_priority_query extension.
     - Added the nvidia-peermem.ko kernel module. This module provides
       Mellanox InfiniBand HCAs (Host Channel Adapters) direct peer-to-peer
       access to NVIDIA GPU memory without need without needing to copy data
       to host memory.
       See the chapter "GPUDirect RDMA Peer Memory Client" in the README
       for details.
     - Added support for the VK_EXT_provoking_vertex extension.
     - Initial support for hardware accelerated OpenGL and Vulkan rendering
       on Xwayland. See the chapter "OpenGL and Vulkan on Xwayland" in the
       README for details.
     - Fixed a bug that could cause intermittent corruption in Wolfenstein:
       Youngblood when using NVIDIA Kepler, Maxwell, Pascal, and Volta GPUs.
     - Fixed a bug that could cause games running with DXVK to crash with Xid 31
       (MMU Fault) errors when using NVIDIA Pascal GPUs.
     - Added support for the VK_EXT_extended_dynamic_state2 extension.
     - Added support for the VK_EXT_color_write_enable extension.
     - Added support for the VK_EXT_vertex_input_dynamic_state extension.
     - Added support for the VK_EXT_ycbcr_2plane_444_formats extension.
     - Added support for the VK_NV_inherited_viewport_scissor extension.
     - NvFBC's "direct capture" mode no longer causes flipping to be
       disabled for applications being captured. G-SYNC can now also be
       used simultaneously with NvFBC direct capture.
     - Deprecated NvIFROpenGL support.  Release 470 will be the last to
       support this functionality.  NvIFROpenGL header files, samples
       and documentation were removed from the NVIDIA Capture SDK 7.1.9
       release.  Future drivers will remove libnvidia-ifr.so and any
       other reference to NvIFROpenGL.
       For details please see:
         https://developer.nvidia.com/nvidia-video-codec-sdk
     - Fixed a bug that prevented Vulkan direct-to-display from working when
       DRM KMS is enabled.
     - Enabled the NVIDIA driver, by default, to attempt to initialize SLI when
       using GPUs with different amounts of video memory.  Previously, this was
       only available when bit 1 was set in the "Coolbits" X config option.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
     - Fixed an issue where vkCreate{Graphics,Compute}Pipeline would sometimes
       crash when the shaders contained resources with no set/binding.
     - Fixed a memory fault in the Vulkan driver when using some smaller
       dimensions of sparse images.
     - Fixed an issue with vkCmdSetViewport when firstViewport is non-zero.
     - Fixed handling of VK_DESCRIPTOR_BINDING_VARIABLE_DESCRIPTOR_COUNT_BIT for
       variable size descriptor bindings.
     * Fixed crash with certain DisplayPort devices.  (Closes: #989069)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update symbols files.
   * libnvidia-nvvm4: New package for the NVVM Compiler library.
   * Drop manually added Depends: libcuda1 from libraries not referencing it.
   * nvidia-driver-libs: Add Recommends: libnvidia-encode1.  (Closes: #989885)
 .
 nvidia-graphics-drivers (465.31-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.31 (2021-05-18).
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (465.27-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.27 (2021-04-29).
 .
   [ Andreas Beckmann ]
   * libcuda1: Add Provides: libcuda-11.3-1{,-i386}.
   * Build the nvidia-peermem kernel module.
 .
 nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 465.24.02 (2021-04-14).
     * Fixed CVE-2021-1076, CVE-2021-1077.  (Closes: #987216)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5172
   * New upstream beta 465.19.01 (2021-03-30).
     - Added gsp.bin firmware file which is used to offload the GPU initialization
       and management tasks on some GPUs. See the "GSP Firmware" chapter in the
       README for more information.
     - Improved X11 DrawText() performance when rendering stippled text.
     - Fixed a bug that could prevent some hardware configurations with large
       numbers of displays connected to the same GPU from working correctly.
     - Fixed a bug that could cause multi-threaded GLX applications to hang
       while attempting to handle an XError.
     - Fixed a potential crash in the Vulkan driver when clearing images with
       multiple layers.
     - Fixed a bug with the host-visible device-local memory heap, where if an
       allocation failed due to space constraints, it could cause the application
       to crash on future Vulkan function calls.
     - Fixed corruption in the Vulkan driver that sometimes occurred with shadow
       rendering with image arrays.
     - Added support for the VK_KHR_synchronization2 extension.
     - Added support for the VK_KHR_workgroup_memory_explicit_layout extension.
     - Added support for the VK_KHR_zero_initialize_workgroup_memory extension.
     - Added support for linear images for use with host-visible video memory in
       Vulkan.
     - Fixed an issue with OpenGL where imported Vulkan buffers would fail with
       GL_OUT_OF_MEMORY when marked as resident.
     - Fixed a bug that caused the NVIDIA driver to retain an incorrect
       memory mapping of the UEFI system console when booting with the
       kernel parameter pci=realloc. This could cause the console to corrupt
       memory in use by the NVIDIA driver, and vice versa.
     - Runtime D3 Power Management is now enabled by default on supported
       notebook systems with Ampere or newer GPUs. See the chapter titled
       "PCI-Express Runtime D3 (RTD3) Power Management" in the README for
       further details.
     - Updated the NVIDIA X driver to allow OpenGL applications running on an X
       server that has left the active virtual terminal (VT) to continue running
       on the GPU, but with a limited frame rate.
       This functionality is only enabled when the
       NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled.
     - Fix a Vulkan clamping bug where fragment depth values would not be clamped
       to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled.
     - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables.
     - Fixed a bug in compilation of SPIR-V intersection shaders when modules
       with multiple entry points are used.
 .
   [ Andreas Beckmann ]
   * Update symbols files.
   * Ship the gsp.bin firmware blob on amd64.
   * Some power management features were not yet in Linux 2.6.32.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers-tesla-460 (460.106.00-6) UNRELEASED; urgency=medium
 .
   * Backport pci/dma, iosys_map, dma_set_coherent_mask, acpi_bus_get_device,
     cc_mkdec and drm_mode_config_has_allow_fb_modifiers changes from
     470.129.06 to fix kernel module build for Linux 5.18.
   * Minor packaging sync and cleanup (470.129.06-6).
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-470 (470.129.06-5) unstable; urgency=medium
 .
   * Temporarily disable autopkgtest on ppc64el.  (Cf. #1012245)
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-470 (470.129.06-4) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
nvidia-graphics-drivers-tesla-470 (470.129.06-3) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
nvidia-graphics-drivers-tesla-470 (470.129.06-2) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
nvidia-graphics-drivers-tesla-470 (470.129.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011146)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
nvidia-graphics-drivers-tesla-470 (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005934)
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
nvidia-graphics-drivers-tesla-470 (470.103.01-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-graphics-drivers-tesla-470 (470.103.01-1) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.  (Closes: #1004853)
 .
 nvidia-graphics-drivers (470.103.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.103.01 (2022-01-31).
     * Fixed CVE‑2022‑21813, CVE‑2022‑21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added support for the following GPUs: NVIDIA GeForce MX550,
       NVIDIA GeForce MX570, NVIDIA GeForce RTX 2050.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (470.94-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.94 (2021-12-13).
     - Added support for the following GPU: NVIDIA PG509-210.
     - Worked around an issue that prevented some games from flipping (and
       therefore taking advantage of G-SYNC and G-SYNC Compatible monitors) on
       certain desktops such as GNOME.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.86-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.86 (2021-11-10).
     - Added support for the following GPUs: RTX A2000 12GB, RTX A4500,
       T400 4GB, T1000 8GB.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * nvidia-kernel-support: Provide /etc/modprobe.d/nvidia-options.conf as a
     template taking into account the module renaming. This is a slave
     alternative of the nvidia alternative.  (Closes: #999670)
nvidia-graphics-drivers-tesla-470 (470.82.01-1) unstable; urgency=medium
 .
   * New upstream Tesla release 470.82.01 (2021-11-02).
     - Fixed a regression which prevented DisplayPort and HDMI 2.1 variable
       refresh rate (VRR) G-SYNC Compatible monitors from functioning correctly
       in variable refresh rate mode, resulting in issues such as flickering.
nvidia-graphics-drivers-tesla-470 (470.57.02-2) unstable; urgency=medium
 .
   * Rebuild as Tesla 470 driver.
 .
 nvidia-graphics-drivers (470.57.02-3) unstable; urgency=medium
 .
   * Backport drm_device_has_pdev and set_current_state changes from 470.63.01
     to fix kernel module build for Linux 5.14.  (Closes: #994860)
   * Generate tight dependencies on libnvidia*-glcore/libnvidia*-eglcore.
     (Closes: #992057)
   * Bump Standards-Version to 4.6.0. No changes needed.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
nvidia-graphics-drivers-tesla-470 (470.57.02-1) unstable; urgency=medium
 .
   * Fork as new source package, rename everything to include '-tesla-470'.
   * Do not build 'unversioned' packages from this source.
   * Upload to unstable.

nvidia-persistenced (470.103.01-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-persistenced (470.103.01-2) unstable; urgency=medium
 .
   * Drop alternative dependency on libnvidia-tesla-460-cfg1.
     (EoL, switch to libnvidia-tesla-470-cfg1.)
   * Add libnvidia-tesla-510-cfg1 as alternative dependency.
 .
 nvidia-persistenced (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-persistenced (470.57.02-1) unstable; urgency=medium
 .
   * New upstream release.
   * Add libnvidia-tesla-{470,460}-cfg1 as alternative dependencies.
nvidia-persistenced (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release.
nvidia-persistenced (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-persistenced (470.57.02-1) unstable; urgency=medium
 .
   * New upstream release.
   * Add libnvidia-tesla-{470,460}-cfg1 as alternative dependencies.

nvidia-settings (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-settings (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release 470.103.01.
 .
 nvidia-settings (470.94-1) unstable; urgency=medium
 .
   * New upstream release 470.94.
   * Update Lintian overrides.
 .
 nvidia-settings (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release 470.82.00.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-settings (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-settings (470.57.02-1) experimental; urgency=medium
 .
   * New upstream release 470.57.02.
     - Updated the nvidia-settings command line interface to confirm successful
       assignment of string attributes. This makes the behavior more consistent
       with other types of attribute assignments.
   * New upstream release 470.42.01.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
   * New upstream release 465.19.01.
     - Updated the nvidia-settings control panel to be more consistent about
       displaying layout controls which are only applicable for some displays
       or GPUs connected to the system.
   * Refresh patches.
   * Upload to experimental.
nvidia-settings (470.103.01-1~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-settings (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-settings (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release 470.103.01.
 .
 nvidia-settings (470.94-1) unstable; urgency=medium
 .
   * New upstream release 470.94.
   * Update Lintian overrides.
 .
 nvidia-settings (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release 470.82.00.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-settings (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-settings (470.57.02-1) experimental; urgency=medium
 .
   * New upstream release 470.57.02.
     - Updated the nvidia-settings command line interface to confirm successful
       assignment of string attributes. This makes the behavior more consistent
       with other types of attribute assignments.
   * New upstream release 470.42.01.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
   * New upstream release 465.19.01.
     - Updated the nvidia-settings control panel to be more consistent about
       displaying layout controls which are only applicable for some displays
       or GPUs connected to the system.
   * Refresh patches.
   * Upload to experimental.
 .
 nvidia-settings (460.91.03-1) unstable; urgency=medium
 .
   * New upstream release 460.91.03.
 .
 nvidia-settings (460.73.01-1) unstable; urgency=medium
 .
   [ Andreas Beckmann ]
   * New upstream release 460.73.01.
 .
   [ Pino Toscano ]
   * Install nvidia-settings.png in the hicolor icon theme, rather than the
     legacy pixmaps location.
 .
 nvidia-settings (460.56-1) unstable; urgency=medium
 .
   * New upstream release 460.56.
nvidia-settings (470.94-1) unstable; urgency=medium
 .
   * New upstream release 470.94.
   * Update Lintian overrides.
nvidia-settings (470.94-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-settings (470.94-1) unstable; urgency=medium
 .
   * New upstream release 470.94.
   * Update Lintian overrides.
 .
 nvidia-settings (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release 470.82.00.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-settings (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-settings (470.57.02-1) experimental; urgency=medium
 .
   * New upstream release 470.57.02.
     - Updated the nvidia-settings command line interface to confirm successful
       assignment of string attributes. This makes the behavior more consistent
       with other types of attribute assignments.
   * New upstream release 470.42.01.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
   * New upstream release 465.19.01.
     - Updated the nvidia-settings control panel to be more consistent about
       displaying layout controls which are only applicable for some displays
       or GPUs connected to the system.
   * Refresh patches.
   * Upload to experimental.
nvidia-settings (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release 470.82.00.
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-settings (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
nvidia-settings (470.57.02-1) experimental; urgency=medium
 .
   * New upstream release 470.57.02.
     - Updated the nvidia-settings command line interface to confirm successful
       assignment of string attributes. This makes the behavior more consistent
       with other types of attribute assignments.
   * New upstream release 470.42.01.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
   * New upstream release 465.19.01.
     - Updated the nvidia-settings control panel to be more consistent about
       displaying layout controls which are only applicable for some displays
       or GPUs connected to the system.
   * Refresh patches.
   * Upload to experimental.

nvidia-settings-tesla-470 (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-settings-tesla-470 (470.103.01-1~deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 nvidia-settings-tesla-470 (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-settings-tesla-470 (470.103.01-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla-470.
 .
 nvidia-settings (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release 470.103.01.
 .
 nvidia-settings-tesla-470 (470.94-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla-470.
 .
 nvidia-settings (470.94-1) unstable; urgency=medium
 .
   * New upstream release 470.94.
   * Update Lintian overrides.
 .
 nvidia-settings-tesla-470 (470.82.00-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla-470.
 .
 nvidia-settings (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release 470.82.00.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-settings (470.57.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-settings-tesla-470 (470.57.02-1) unstable; urgency=medium
 .
   * Initial release of nvidia-settings for use with the Tesla 470 driver.
   * Build only a single binary package, no -dev package or shared library.
   * Upload to unstable.
 .
 nvidia-settings (470.57.02-1) experimental; urgency=medium
 .
   * New upstream release 470.57.02.
     - Updated the nvidia-settings command line interface to confirm successful
       assignment of string attributes. This makes the behavior more consistent
       with other types of attribute assignments.
   * New upstream release 470.42.01.
     - Updated GPU fan control to be available by default in
       nvidia-settings and NV-CONTROL, for GPU boards that support
       programmable fan control.  Previously, this was only available
       when bit 2 was set in the "Coolbits" X config option.
   * New upstream release 465.19.01.
     - Updated the nvidia-settings control panel to be more consistent about
       displaying layout controls which are only applicable for some displays
       or GPUs connected to the system.
   * Refresh patches.
   * Upload to experimental.
nvidia-settings-tesla-470 (470.94-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla-470.
nvidia-settings-tesla-470 (470.82.00-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla-470.
nvidia-settings-tesla-470 (470.57.02-1) unstable; urgency=medium
 .
   * Initial release of nvidia-settings for use with the Tesla 470 driver.
   * Build only a single binary package, no -dev package or shared library.
   * Upload to unstable.

nvidia-xconfig (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-xconfig (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-xconfig (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bump Standards-Version to 4.6.0. No changes needed.
 .
 nvidia-xconfig (470.57.02-1) unstable; urgency=medium
 .
   * New upstream release.
nvidia-xconfig (470.82.00-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bump Standards-Version to 4.6.0. No changes needed.
nvidia-xconfig (470.57.02-1) unstable; urgency=medium
 .
   * New upstream release.

openjdk-11 (11.0.15+10-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye
openjdk-11 (11.0.15+10-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster
openjdk-11 (11.0.14.1+1-1) unstable; urgency=medium
 .
   * OpenJDK 11.0.14.1+1 build (release).
     - Fix JDK-8218546. LP: #1966338.
openjdk-11 (11.0.14+9-1) unstable; urgency=high
 .
   * OpenJDK 11.0.14+9 build (release).

openjdk-17 (17.0.3+7-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye
openjdk-17 (17.0.2+8-1) unstable; urgency=high
 .
   * OpenJDK 17.0.2+8 (release).
   * Addresses security issues: CVE-2022-21366, CVE-2022-21365, CVE-2022-21360,
     CVE-2022-21341, CVE-2022-21340, CVE-2022-21305, CVE-2022-21299,
     CVE-2022-21296, CVE-2022-21294, CVE-2022-21293, CVE-2022-21291,
     CVE-2022-21283, CVE-2022-21282, CVE-2022-21277, CVE-2022-21248.

openldap (2.4.57+dfsg-3+deb11u1) bullseye-security; urgency=high
 .
   * Fix SQL injection in back-sql (ITS#9815) (CVE-2022-29155)
openldap (2.4.57+dfsg-3+deb11u1~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 openldap (2.4.57+dfsg-3+deb11u1) bullseye-security; urgency=high
 .
   * Fix SQL injection in back-sql (ITS#9815) (CVE-2022-29155)

openssh (1:8.4p1-5+deb11u1) bullseye; urgency=medium
 .
   * Backport from upstream:
     - Add new pselect6_time64 syscall on 32-bit architectures (closes:
       #1004427).

openssl (1.1.1n-0+deb11u3) bullseye-security; urgency=medium
 .
   * CVE-2022-2068 (The c_rehash script allows command injection).
   * Update expired certs.
openssl (1.1.1n-0+deb11u2) bullseye-security; urgency=medium
 .
   * CVE-2022-1292 (The c_rehash script allows command injection).

orca (3.38.2-2) bullseye; urgency=high
 .
   * debian/patches/git-webkitgtk1: Fix screen reading of webkitgtk 2.36 which
     changed its toolkit name
   * debian/patches/git-webkitgtk2: Fix screen reading of webkitgtk 2.36 which
     doesn't implement Collection any more.

php-guzzlehttp-psr7 (1.7.0-1+deb11u1) bullseye; urgency=medium
 .
   * Track Bullseye
   * Backport fixes for improper header parsing [CVE-2022-24775]
     (Closes: #1008236)

php-twig (2.14.3-1+deb11u1) bullseye-security; urgency=high
 .
   * Backport fix from 3.3.8 [CVE-2022-23614]
     Disallow calling non Closure in the `sort` filter as is the case for
     some other filters.

phpmyadmin (4:5.0.4+dfsg2-2+deb11u1) bullseye; urgency=medium
 .
   * Add a patch for error 500 with some SQL queries (Closes: #1012847)

postfix (3.5.13-0+deb11u1) bullseye; urgency=medium
 .
   [Scott Kitterman]
 .
   * Update debian/watch to track v3.5 versions for stable updates
   * Refresh patches
   * Include compatibility_level in addition to postifx version when
     determining default value for chroot in master.cf.  Closes: #995129
   * Fixup errors in postifx-add-* man pages.  Closes: #995031
   * Update main/master.cf.proto on upgrade if not modified.  Closes: #991513
   * Update d/p/70_postfix-check.diff to exclude makedefs.out from synlink
     check.  Closes: #926331
   * Test that nothing is reported by postfix check in autopkgtest
   * Do not override user set default_transport in postinst.  Closes: #988538
   * Add information about keeping resolv.conf up to date in the chroot with
     the resolvconf package.  Closes: #964762
 .
   [Sergio Gelato]
 .
   * Correct if-up.d to not error out if postfix can't send mail yet.
     Closes: #959864
 .
   [Miriam España Acebal]
 .
   * Removed LDFLAG -Bsymbolic-functions to fix issue where TLS is disabled
     when private/tlmsgr socket is not found.  lp: #1885403
 .
   [Paride Legovini]
 .
   * d/postfix.postinst: tolerate search domain with a leading dot.
     Closes: #991950
 .
   [Wietse Venema]
 .
   * 3.5.7
     - Bugfix (introduced: Postfix 3.4, already fixed in Postfix
       3.6): tlsproxy(8) was using the wrong DANE macro for
       connections with DANE trust anchors or with non-DANE trust
       anchors (WTF: Thorsten Habich found this bug in the use
       case that has nothing to do with DANE). This resulted in a
       global certificate verify function pointer race, between
       TLS handshakes that use TLS trust achors and handshakes
       that use PKI. No memory was corrupted in the course of all
       this.  Viktor Dukhovni. File: tlsproxy/tlsproxy.c.
 .
     - Cleanup: the posttls-finger '-X' option reported a false
       conflict with '-r'. File: posttls-finger/posttls-finger.c.
 .
   * 3.5.8
     - Bugfix (introduced: Postfix 2.0): smtp_sasl_mechanism_filter
       ignored table lookup errors, treating them as 'not found'.
       Found during Postfix 3.6 development. File: smtp/smtp_sasl_proto.c.
 .
     - Bugfix (introduced: Postfix 2.3): when deleting a recipient
       with a milter, delete the recipient from the duplicate
       filter, so that the recipient can be added back. Backported
       from Postfix 3.6. Files: global/been_here.[hc],
       cleanup/cleanup_milter.c.
 .
     - Bugfix (introduced: before Postfix alpha): the code that
       looks for Delivered-To: headers ignored headers longer than
       $line_length_limit. Backported from Postfix 3.6. File:
       global/delivered_hdr.c.
 .
     - Bugfix (introduced: Postfix 2.8): save a copy of the
       postscreen_dnsbl_reply_map lookup result. This has no effect
       when the recommended texthash: look table is used, but it
       may avoid stale data with other lookup tables. File:
       postscreen/postscreen_dnsbl.c.
 .
     - Bugfix (introduced: Postfix 2.2): after processing an
       XCCLIENT command, the smtps service was waiting for a TLS
       handshake. Found by Aki Tuomi. File: smtpd/smtpd.c.
 .
     - Bugfix (introduced: Postfix 2.3): static maps did not free
       their casefolding buffer. File: util/dict_static.c.
 .
     - Bugfix (introduced: Postfix 3.5): the Postfix SMTP client
       broke message headers longer than $line_length_limit, causing
       subsequent header content to become message body content.
       Reported by Andreas Weigel, fix by Viktor Dukhovni. File:
       smtp/smtp_proto.c.
 .
   * 3.5.9
     - Feature: when a Postfix program makes a DNS query that
       requests DNSSEC validation (usually for Postfix DANE support)
       but the DNS response is not DNSSEC validated, Postfix will
       send a DNS query configured with the "dnssec_probe" parameter
       to determine if DNSSEC support is available, and logs a
       warning if it is not. By default, the probe has type "ns"
       and domain name ".". The probe is sent once per process
       lifetime. Files: dns/dns.h, dns/dns_lookup.c, dns/dns_sec.c,
       test_dns_lookup.c, global/mail_params.[hc], mantools/postlink.
 .
     - The default "smtp_tls_dane_insecure_mx_policy = dane" was
        causing unnecessary dnssec_probe activity. The default is now
        "dane" when smtp_tls_security_level is "dane", otherwise it is
        "may". File: global/mail_params.h.
 .
   * 3.5.10
     - Missing null pointer checks (introduced: Postfix 3.4) after
       an internal I/O error during the smtp(8) to tlsproxy(8)
       handshake. Found by Coverity, reported by Jaroslav Skarvada.
       Based on fix by Viktor Dukhovni. File: tls/tls_proxy_client_scan.c.
 .
     - Null pointer bug (introduced: Postfix 3.0) and memory leak
       (introduced: Postfix 3.4) after an inline: table syntax
       error in main.cf or master.cf. Found by Coverity, reported
       by Jaroslav Skarvada. Based on fix by Viktor Dukhovni. File:
       util/dict_inline.c.
 .
     - Incomplete null pointer check (introduced: Postfix 2.10)
       after truncated HaProxy version 1 handshake message. Found
       by Coverity, reported by Jaroslav Skarvada. Fix by Viktor
       Dukhovni. File: global/haproxy_srvr.c.
 .
     - Missing null pointer check (introduced: Postfix alpha) after
       null argv[0] value. File: global/mail_task.c.
 .
   * 3.5.11
     - Bugfix (introduced: Postfix 2.11): the command "postmap
       lmdb:/file/name" handled duplicate keys ungracefully,
       discarding entries stored up to and including the duplicate
       key, and causing a double free() call with lmdb versions
       0.9.17 and later. Reported by Adi Prasaja; double free()
       root cause analysis by Howard Chu. File: util/slmdb.c.
 .
     - Typo (introduced: Postfix 3.4): silent_discard should be
       silent-discard. File: proto/BDAT_README.html.
 .
     - Support for Postfix 3.6 compatibility_level syntax, to avoid
       fatal runtime errors when rolling back from Postfix 3.6 to
       an earlier supported version, or when sharing Postfix 3.6
       configuration files with an earlier supported Postfix
       version. File: global/mail_params.c.
 .
   * 3.5.12
     - Bugfix (introduced: Postfix 3.4): the texthash: map
       implementation did not support "postmap -F" behavior.
       Reported by Christopher Gurnee, who also found the missing
       code in the postmap source. File: util/dict_thash.c.
 .
     - Bugfix (introduced: 1999, Postfix 2.11) latent false "Result too
       large" (ERANGE) errors because an strtol() call had no 'errno
       = 0' statement before the call. Back-ported from Postfix 3.6.
       Files: postscreen/postscreen_tests.c, util/mac_expand.c.
 .
     - Bugfix (introduced: Postfix 3.3): "null pointer read" error
       in the cleanup daemon when "header_from_format = standard"
       (the default as of Postfix 3.3) and email was submitted
       with /usr/sbin/sendmail without From: header, and an all-space
       full name was specified in 1) the password file, 2) with
       "sendmail -F", or 3) with the NAME environment variable.
       Found by Renaud Metrich. File: cleanup/cleanup_message.c.
       (Closes: #968057)
 .
     - Bugfix (introduced: 1999): the Postfix SMTP server was
       sending all session transcripts to the error_notice_recipient,
       instead of sending transcripts of bounced mail to the
       bounce_notice_recipient. File: smtpd/smtpd_chat.c.
 .
     - Bugfix (introduced: Postfix 2.4): false "too many reverse
       jump" warnings in the showq daemon. The loop detection code
       was comparing memory addresses instead of queue file names.
       It now properly compares strings. Reported by Mehmet Avcioglu.
       File: global/record.c.
 .
   * 3.5.13
     - Bitrot: OpenSSL 3.x requires const. File: tls/tls_misc.c.
 .
     - Bugfix (bug introduced: Postfix 2.10): postconf -x produced
       incorrect output, because different functions were implicitly
       sharing a buffer for intermediate results. Reported
       by raf, root cause analysis by Viktor Dukhovni. File:
       postconf/postconf_builtin.c.
 .
     - Bugfix (problem introduced: Postfix 2.11): check_ccert_access
       worked as expected, but produced a spurious warning when
       Postfix was built without SASL support. Fix by Brad Barden.
       File: smtpd/smtpd_check.c.
 .
     - Bugfix (introduced: Postfix 2.4): queue file corruption
       after a Milter (for example, MIMEDefang) made a request to
       replace the message body with a copy of that message body
       plus additional text (for example, a SpamAssassin report).
 .
       The most likely impacts were a) the queue manager reporting
       a fatal error resulting in email delivery delays, or b) the
       queue manager reporting the corruption and moving the message
       to the corrupt queue for damaged messages.
 .
       However, a determined adversary could craft an email message
       that would trigger the bug, and insert a content filter
       destination or a redirect email address into its queue file.
       Postfix would then deliver the message headers there, in
       most cases without delivering the message body. With enough
       experimentation, an attacker could make Postfix deliver
       both the message headers and body.
 .
       The details of a successful attack depend on the Milter
       implementation, and on the Postfix and Milter configuration
       details; these can be determined remotely through
       experimentation.  Failed experiments may be detected when
       the queue manager terminates with a fatal error, or when
       the queue manager moves damaged files to the "corrupt" queue
       as evidence.
 .
       Technical details: when Postfix executes a "replace body"
       Milter request it will reuse queue file storage that was
       used by the existing email message body. If the new body
       is larger, Postfix will append body content to the end of
       the queue file. The corruption happened when a Milter (for
       example, MIMEDefang) made a request to replace the body of
       a message with a new body that contained a copy of the
       original body plus some new text, and the original body
       contained a line longer than $line_length_limit bytes (for
       example, an image encoded in base64 without hard or soft
       line breaks). In queue files, Postfix stores a long text
       line as multiple records with up to $line_length_limit bytes
       each. Unfortunately, Postfix's "replace body" support did
       not account for the additional queue file space needed to
       store the second etc.  record headers. And thus, the last
       record(s) of a long text line could overwrite one or more
       queue file records immediately after the space that was
       previously occupied by the original message body.
 .
       Problem report by Benoît Panizzon.
 .
   * Fix duplicate bounce_notice_recipient entries in postconf output.
     Closes: #999694

postgresql-13 (13.7-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
 .
     * Confine additional operations within security restricted operation
       sandboxes (Sergey Shinderuk, Noah Misch)
 .
       Autovacuum, CLUSTER, CREATE INDEX, REINDEX, REFRESH MATERIALIZED VIEW,
       and pg_amcheck activated the security restricted operation protection
       mechanism too late, or even not at all in some code paths. A user having
       permission to create non-temporary objects within a database could
       define an object that would execute arbitrary SQL code with superuser
       permissions the next time that autovacuum processed the object, or that
       some superuser ran one of the affected commands against it.
 .
       The PostgreSQL Project thanks Alexander Lakhin for reporting this
       problem. (CVE-2022-1552)
 .
     * Fix default signature length for gist_ltree_ops indexes
       (Tomas Vondra, Alexander Korotkov)
 .
       The default signature length (hash size) for GiST indexes on ltree
       columns was accidentally changed while upgrading that operator class to
       support operator class parameters. If any operations had been done on
       such an index without first upgrading the ltree extension to version
       1.2, they were done assuming that the signature length was 28 bytes
       rather than the intended 8.  This means it is very likely that such
       indexes are now corrupt.  For safety we recommend re-indexing all GiST
       indexes on ltree columns after installing this update.  (Note that GiST
       indexes on ltree[] columns, that is arrays of ltree, are not affected.)

procmail (3.22-26+deb11u1) bullseye; urgency=medium
 .
   * Fix NULL pointer dereference. Closes: #769938.
     Reported by Jakub Wilk using American Fuzzy Lop.
     Patch from Stephen R. van den Berg.

python-bottle (0.12.19-1+deb11u1) bullseye-security; urgency=high
 .
   * Gracefully handle errors during early request binding
     Kudos to Marcel Hellkamp
 .
 python-bottle (0.12.19-1) unstable; urgency=medium
 .
   * New upstream release
 .
 python-bottle (0.12.16-1) UNRELEASED; urgency=medium
 .
   * New upstream release
 .
 python-bottle (0.12.15-2) unstable; urgency=medium
 .
   * Update tox dependency (Closes: #924836)
 .
 python-bottle (0.12.15-1) unstable; urgency=medium
 .
   * New upstream release
 .
 python-bottle (0.12.13-1) unstable; urgency=medium
 .
   * New upstream release (See #850176)
 .
 python-bottle (0.12.11-1) unstable; urgency=high
 .
   * New upstream release (Closes: #848392)
   * Add python-setuptools dependency
 .
 python-bottle (0.12.10-1) unstable; urgency=medium
 .
   * New upstream release
   * Run only "fast" unit tests (Closes: #834918)
 .
 python-bottle (0.12.9-1) unstable; urgency=low
 .
   * New upstream release
 .
 python-bottle (0.12.7-1) unstable; urgency=low
 .
   * New upstream release
 .
 python-bottle (0.12.6-1) unstable; urgency=high
 .
   * New upstream release, closes https://github.com/defnull/bottle/issues/616
 .
 python-bottle (0.12.5-1) unstable; urgency=medium
 .
   * New upstream version
 .
 python-bottle (0.12.4-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.12.3-1) unstable; urgency=medium
 .
   [ Federico Ceratto ]
   * New upstream version
   * Standard-Version bumped to 3.9.5
 .
   [ Daniel Schepler ]
   * DEB_BUILD_OPTIONS nocheck support added (Closes: #739102)
 .
 python-bottle (0.12.0-1) unstable; urgency=medium
 .
   [ Federico Ceratto ]
   * New upstream version
 .
 python-bottle (0.11.6-1) unstable; urgency=low
 .
   * d/changelog: New upstream release 0.11.6
 .
 python-bottle (0.11.3-1) experimental; urgency=low
 .
   * New upstream version
   * Unit-testing enabled
 .
 python-bottle (0.10.11-1) unstable; urgency=low
 .
   * New upstream version
   * Homepage updated (Closes: #671230)
   * Standard-Version bumped to 3.9.3, debhelper version bumped to 9
 .
 python-bottle (0.10.9-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.10.7-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.10.6-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.10.2-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.10.1-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.9.7-1) unstable; urgency=low
 .
   * New upstream version
   * debian/control:
     - bumped to debhelper 8
     - dependency to python-all added
   * debian/copyright updated
 .
 python-bottle (0.9.5-2) unstable; urgency=low
 .
   * Testsuite disabled at build-time (Closes: #640266)
   * Use libjs-underscore in python-bottle-doc
 .
 python-bottle (0.9.5-1) unstable; urgency=low
 .
   * New upstream version
 .
 python-bottle (0.9.4-1) unstable; urgency=low
 .
   [ David Paleino ]
   * Added python-{paste,eventlet} B-D to feed the testsuite
 .
   [ Federico Ceratto ]
   * New upstream version
   * DM-Upload-Allowed added
 .
 python-bottle (0.9.1-1) unstable; urgency=low
 .
   * New upstream version
   * Update debian/copyright
   * Standards-Version bump to 3.9.2, no changes needed
   * Patches refreshed
   * Fix docs generation (directory renamed upstream)
   * Fix testsuite
   * Adapt debian/rules to correctly run the testsuite and install
     the plugins
 .
 python-bottle (0.8.4-1) unstable; urgency=low
 .
   * New upstream version
   * Uploading to unstable
 .
 python-bottle (0.8.3-1) experimental; urgency=low
 .
   * New upstream version
   * Upload to experimental, since we're in hard Squeeze freeze now.
 .
 python-bottle (0.8.2-1) unstable; urgency=low
 .
   * New upstream version
   * debian/patches/02-fix_autoserver_ordering.patch refreshed
   * debian/control:
     - Standards-Version bumped to 3.9.1, no changes needed
 .
 python-bottle (0.8.1-1) unstable; urgency=low
 .
   * New upstream version
   * debian/patches/:
     - 01-fix_quiet_parsing.patch disabled, seems fixed in a different
       way upstream
     - 02-fix_autoserver_ordering.patch refreshed
   * debian/control:
     - Standards-Version bumped to 3.9.0, no changes needed
   * debian/README.source removed, since the package now contains the
     documentation
   * debian/watch fixed, only get versions made by digits and dots
   * debian/NEWS.Debian added, explain incompatible API changes with previous
     versions
 .
 python-bottle (0.8.0-3) unstable; urgency=low
 .
   * debian/patches/02-fix_autoserver_ordering.patch added, moves
     CherryPyServer later in the list, since it does weird things
     on import even when people don't use it. (Closes: #586316)
   * debian/control:
     - added Provides to python-bottle
 .
 python-bottle (0.8.0-2) unstable; urgency=low
 .
   * debian/patches/01-fix_quiet_parsing.patch added, thanks to Enrico
     Zini: only use "quiet" parameter inside run(), i.e. don't pass it
     to the server adapter (Closes: #584781)
 .
 python-bottle (0.8.0-1) unstable; urgency=low
 .
   * New upstream version
   * debian/watch updated to point to github tags
   * debian/control:
     - added Build-Dependency on python-sphinx, to build documentation
     - bumped debhelper B-D to >= 7.0.50~
     - Standards-Version bumped to 3.8.4 , no changes needed
     - added runtime Depends on libjs-jquery
     - new package python-bottle-doc added
   * debian/python-bottle-doc.docs added
   * debian/rules:
     - also install generated documentation
   * debian/source/format added, using 3.0 (quilt).
   * debian/python-bottle-doc.links added, use system-wide jQuery
   * debian/python-bottle-doc.doc-base added
 .
 python-bottle (0.6.4-1) unstable; urgency=low
 .
   * Initial release (Closes: #555717)

python-scrapy (2.4.1-2+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * Security fix for CVE-2021-41125: Don't send authentication data with all
     requests. Provide a http_auth_domain spider attribute to control which
     domains are allowed to receive the configured HTTP authentication
     credentials.
   * Security Fix CVE-2022-0577: Don't expose cookies cross-domain when
     redirected. (Closes: #1008234)

qemu (1:5.2+dfsg-11+deb11u2) bullseye-security; urgency=medium
 .
   * virtio-net-fix-map-leaking-on-error-during-receive-CVE-2022-26353.patch
     fix memory leak after fix for CVE-2021-3748
   * vhost-vsock-detach-the-virqueue-element-on-error-CVE-2022-26354.patch
     vhost-sock device was not detaching invalid element from
     the virtqueue on error
   * ui-cursor-fix-integer-overflow-in-cursor_alloc-CVE-2021-4206.patch,
     display-qxl-render-fix-race-condition-in-qxl_cursor-CVE-2021-4207.patch
     two flaws can lead to allocation of small cursor object followed by a
     subsequent heap-based buffer overflow with a potential for executing
     arbitrary code within the context of QEMU process
   * virtiofsd-drop-membership-of-all-supplementary-group-CVE-2022-0358.patch
     potential group escalation allowed by virtiofsd

rsyslog (8.2102.0-2+deb11u1) bullseye-security; urgency=medium
 .
   * Fix potential heap buffer overflow in TCP syslog server (receiver)
     components when octet-counted framing is used
     (CVE-2022-24903, Closes: #1010619)

ruby-net-ssh (1:6.1.0-2+deb11u1) bullseye; urgency=medium
 .
   * Backport upstream patches to fix authentication against hosts using
     OpenSSH 8.8, including but not limited to Debian bookworm
     (Closes: #1009155, #1008541)

runc (1.0.0~rc93+ds1-5+deb11u2) bullseye; urgency=medium
 .
   * Backport upstream patch:
     - do not set inheritable capabilities, Fixes: CVE-2022-29162
 .
 runc (1.0.0~rc93+ds1-5+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * backport upstream patch: Honor seccomp defaultErrnoRet, Closes: #1012030
runc (1.0.0~rc93+ds1-5+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * backport upstream patch: Honor seccomp defaultErrnoRet, Closes: #1012030

samba (2:4.13.13+dfsg-1~deb11u4) bullseye-proposed-updates; urgency=medium
 .
   * fix the order of everything during build by exporting PYTHONHASHSEED=1
     for waf.  This should fix the broken i386 build of the last security
     upload. Closes: #1006935, #1009855
   * Import the left-over patches from 4.13.17 upstream stable branch:
    - s3-winbindd-fix-allow-trusted-domains-no-regression.patch
      https://bugzilla.samba.org/show_bug.cgi?id=14899
      Closes: #999876, winbind fails to start with `allow trusted domains: no`
    - IPA-DC-add-missing-checks.patch
      https://bugzilla.samba.org/show_bug.cgi?id=14903
    - CVE-2020-25717-s3-auth-fix-MIT-Realm-regression.patch
      https://bugzilla.samba.org/show_bug.cgi?id=14922
      Closes: #1001053, MIT-kerberos auth broken after 4.13.13+dfsg-1~deb11u2
    - dsdb-Use-DSDB_SEARCH_SHOW_EXTENDED_DN-when-searching.patch
      https://bugzilla.samba.org/show_bug.cgi?id=14656
      https://bugzilla.samba.org/show_bug.cgi?id=14902
    - s3-smbd-Fix-mkdir-race-condition-allows-share-escape.patch
      https://bugzilla.samba.org/show_bug.cgi?id=13979
      Closes: #1004691, CVE-2021-43566: mkdir race condition allows share escape
   * 4 patches from upstream to fix possible serious data corruption issue
     with windows client cache poisoning, Closes: #1005642
     https://bugzilla.samba.org/show_bug.cgi?id=14928
   * two patches from upstream to fix coredump when connecting to shares
     with var substitutions, Closes: #998423
     https://bugzilla.samba.org/show_bug.cgi?id=14809
   * samba-common-bin.postinst: mkdir /run/samba before invoking samba binaries
     Closes: #953530
   * remove file creation+deletion from previously applied combined patches
     CVE-2021-23192-only-4.13-v2.patch & CVE-2021-3738-dsdb-crash-4.13-v03.patch
     to make patch deapply happy (quilt does not notice this situation)
   * d/salsa-ci.yml: target bullseye

slurm-wlm (20.11.7+really20.11.4-2+deb11u1) bullseye-security; urgency=medium
 .
   * Fix CVE-2022-29500 and CVE-2022-29501
     (Closes: #1010634, #1010633)
   * Update libslurm symbols file

smarty3 (3.1.39-2+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix the following CVE:
     - CVE-2021-21408: template authors could run restricted static php methods
     - CVE-2021-29454: template authors could run arbitrary PHP code by crafting
                       a malicious math string
     - CVE-2022-29221: template authors could inject php code by choosing a
                       malicious {block} name or {include} file name
smarty3 (3.1.39-2) unstable; urgency=medium
 .
   * debian/watch:
     + Fix Github watch URL.

spip (3.2.11-3+deb11u4) bullseye-security; urgency=high
 .
   * Backport security fix from 3.2.15
     - Sanitizing and other XSS protections

squid (4.13-10+deb11u1) bullseye-security; urgency=medium
 .
   * Add patch to fix a Denial of Service in Gopher Processing.
     Fixes: CVE-2021-46784.
   * Add patch to fix Out-Of-Bounds memory access in WCCPv2.
     Fixes: CVE-2021-28116.

subversion (1.14.1-3+deb11u1) bullseye-security; urgency=high
 .
   * Security Fixes:
     - CVE-2021-28544: Don't show unreadable copyfrom paths in 'svn log -v'
     - CVE-2022-24070: Fix issue #4880 "Use-after-free of object-pools when
       used as httpd module"
   * Switch gpb.conf and Vcs-Git to debian/bullseye branch

tcpdump (4.99.0-2+deb11u1) bullseye; urgency=medium
 .
   * Minor AppArmor profile updates (debian/usr.bin.tcpdump):
     + Grant access to *.cap (closes: #989433).
     + Account for numerical suffix in filenames added by -W (closes: #1010688).

telegram-desktop (3.1.1+ds-1~deb11u2) bullseye; urgency=medium
 .
   * Full update from bookworm for compatibility with layer 133 of Telegram API.
     Closes: #1001016.
   * Disable OpenGL acceleration by default, can be re-enabled in settings.
telegram-desktop (3.1.1+ds-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports. (Closes: #1001016)
   * Merge with bookworm. Remaining changes:
     - Disable OpenGL acceleration by default, can be re-enabled in settings.
 .
 telegram-desktop (3.1.1+ds-1) unstable; urgency=medium
 .
   * New upstream release. (Closes: #993972)
   * Update patches.
   * Lower debug info for the following 64-bit architectures: RISC-V in Debian,
     ARMv8 and PowerPC in Ubuntu, due to limitation of their build servers.
telegram-desktop (3.1.1+ds-1~bpo10+1) buster-backports-sloppy; urgency=medium
 .
   * Rebuild for buster-backports-sloppy. (Closes: #1001016)
   * Merge with bookworm. Remaining changes:
     - Pass the -Wl,--as-needed linker flag.
     - Not supported Wayland integration.
     - Disable OpenGL acceleration by default, can be re-enabled in settings.
 .
 telegram-desktop (3.1.1+ds-1) unstable; urgency=medium
 .
   * New upstream release. (Closes: #993972)
   * Update patches.
   * Lower debug info for the following 64-bit architectures: RISC-V in Debian,
     ARMv8 and PowerPC in Ubuntu, due to limitation of their build servers.
telegram-desktop (2.9.2+ds-1) unstable; urgency=medium
 .
   * Upload to unstable.
   * New upstream release.
   * Put all backporting patches to the master branch.
   * Pass the -latomic flag to linker via CMake scripts, not the LDFLAGS
     environment variable. This should really fix build for RISC-V 64-bit.
   * Bump Standards-Version to 4.6.0, no related changes.
telegram-desktop (2.9.2+ds-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
   * Disable OpenGL acceleration by default.
 .
 telegram-desktop (2.9.2+ds-1) unstable; urgency=medium
 .
   * Upload to unstable.
   * New upstream release.
   * Put all backporting patches to the master branch.
   * Pass the -latomic flag to linker via CMake scripts, not the LDFLAGS
     environment variable. This should really fix build for RISC-V 64-bit.
   * Bump Standards-Version to 4.6.0, no related changes.
 .
 telegram-desktop (2.9.0+ds1-2) experimental; urgency=medium
 .
   * Repack upstream source changing suffix for one time.
     - Move bundled subporjects from the debian/ folder to Telegram/ThirdParty.
     - Adjust paths in the debian/copyright file accordingly.
     - Apply Skip-RNNoise.patch to the moved tgcalls subproject.
   * Link against libatomic to fix build on RISC-V 64-bit.
   * Thin intermediate static archives to speed up build a little.
   * Mention missing direct build dependencies, Python, GLib, and XCB.
   * Remove Ignore-emoji-pack.patch that tried to fix build on IA-64.
   * Install Apport hook to collect logs from Ubuntu installations.
 .
 telegram-desktop (2.9.0+ds-1) experimental; urgency=medium
 .
   * New upstream release.
     - Fixes flaws in MtProto implementation. Closes: #991493, CVE-2021-36769.
   * Update tgcalls subproject to commit 6f2746e.
   * New build dependencies, jemalloc, glibmm, and WebKitGTK
   * New Exclude-QWaylandXdgShellIntegration.patch.
   * New Skip-*.patch'es to ignore unneeded dependencies.
   * Increase limit of DIEs for dwz(1) up to 2 ³¹ - 1.
   * Update copyright info.
telegram-desktop (2.9.2+ds-1~bpo10+1) buster-backports-sloppy; urgency=medium
 .
   * Rebuild for buster-backports-sloppy.
   * Exclude unneeded Wayland dependency.
   * Disable OpenGL acceleration by default.
   * Exclude all unused libraries from dependency list.
 .
 telegram-desktop (2.9.2+ds-1) unstable; urgency=medium
 .
   * Upload to unstable.
   * New upstream release.
   * Put all backporting patches to the master branch.
   * Pass the -latomic flag to linker via CMake scripts, not the LDFLAGS
     environment variable. This should really fix build for RISC-V 64-bit.
   * Bump Standards-Version to 4.6.0, no related changes.
 .
 telegram-desktop (2.9.0+ds1-2) experimental; urgency=medium
 .
   * Repack upstream source changing suffix for one time.
     - Move bundled subporjects from the debian/ folder to Telegram/ThirdParty.
     - Adjust paths in the debian/copyright file accordingly.
     - Apply Skip-RNNoise.patch to the moved tgcalls subproject.
   * Link against libatomic to fix build on RISC-V 64-bit.
   * Thin intermediate static archives to speed up build a little.
   * Mention missing direct build dependencies, Python, GLib, and XCB.
   * Remove Ignore-emoji-pack.patch that tried to fix build on IA-64.
   * Install Apport hook to collect logs from Ubuntu installations.
 .
 telegram-desktop (2.9.0+ds-1) experimental; urgency=medium
 .
   * New upstream release.
     - Fixes flaws in MtProto implementation. Closes: #991493, CVE-2021-36769.
   * Update tgcalls subproject to commit 6f2746e.
   * New build dependencies, jemalloc, glibmm, and WebKitGTK
   * New Exclude-QWaylandXdgShellIntegration.patch.
   * New Skip-*.patch'es to ignore unneeded dependencies.
   * Increase limit of DIEs for dwz(1) up to 2 ³¹ - 1.
   * Update copyright info.
telegram-desktop (2.9.0+ds1-2) experimental; urgency=medium
 .
   * Repack upstream source changing suffix for one time.
     - Move bundled subporjects from the debian/ folder to Telegram/ThirdParty.
     - Adjust paths in the debian/copyright file accordingly.
     - Apply Skip-RNNoise.patch to the moved tgcalls subproject.
   * Link against libatomic to fix build on RISC-V 64-bit.
   * Thin intermediate static archives to speed up build a little.
   * Mention missing direct build dependencies, Python, GLib, and XCB.
   * Remove Ignore-emoji-pack.patch that tried to fix build on IA-64.
   * Install Apport hook to collect logs from Ubuntu installations.
telegram-desktop (2.9.0+ds-1) experimental; urgency=medium
 .
   * New upstream release.
     - Fixes flaws in MtProto implementation. Closes: #991493, CVE-2021-36769.
   * Update tgcalls subproject to commit 6f2746e.
   * New build dependencies, jemalloc, glibmm, and WebKitGTK
   * New Exclude-QWaylandXdgShellIntegration.patch.
   * New Skip-*.patch'es to ignore unneeded dependencies.
   * Increase limit of DIEs for dwz(1) up to 2 ³¹ - 1.
   * Update copyright info.

thunderbird (1:91.10.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.10.0-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.9.0-1) unstable; urgency=medium
 .
   * [88b99d1] New upstream version 91.9.0
     Fixed CVE issues in upstream version 91.9 (MFSA 2022-18):
     CVE-2022-1520: Incorrect security status shown after viewing an attached
                    email
     CVE-2022-29914: Fullscreen notification bypass using popups
     CVE-2022-29909: Bypassing permission prompt in nested browsing contexts
     CVE-2022-29916: Leaking browser history with CSS variables
     CVE-2022-29911: iframe sandbox bypass
     CVE-2022-29912: Reader mode bypassed SameSite cookies
     CVE-2022-29913: Speech Synthesis feature not properly disabled
     CVE-2022-29917: Memory safety bugs fixed in Thunderbird 91.9
thunderbird (1:91.9.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
     (Closes: #1009321)
thunderbird (1:91.9.0-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
     (Closes: #1009321)
thunderbird (1:91.8.1-1) unstable; urgency=medium
 .
   * [b57406c] New upstream version 91.8.1
     (Closes: #1009321)
thunderbird (1:91.8.0-1) unstable; urgency=medium
 .
   * [06619c5] New upstream version 91.8.0
     Fixed CVE issues in upstream version 91.8 (MFSA 2022-15):
     CVE-2022-1097: Use-after-free in NSSToken objects
     CVE-2022-28281: Out of bounds write due to unexpected WebAuthN Extensions
     CVE-2022-1197: OpenPGP revocation information was ignored
     CVE-2022-1196: Use-after-free after VR Process destruction
     CVE-2022-28282: Use-after-free in DocumentL10n::TranslateDocument
     CVE-2022-28285: Incorrect AliasSet used in JIT Codegen
     CVE-2022-28286: iframe contents could be rendered outside the border
     CVE-2022-24713: Denial of Service via complex regular expressions
     CVE-2022-28289: Memory safety bugs fixed in Thunderbird 91.8
thunderbird (1:91.8.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.8.0-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.7.0-2) unstable; urgency=medium
 .
   * [c348b62] Rebuild patch-queue from patch queue branch
     Added patch:
     fixes/Bug-1494436-Unset-MOZ_APP_LAUNCHER-for-external-MIME-hand.patch
     (Closes: #948691)
     Thanks go out to Simon McVittie for preparing this patch!
thunderbird (1:91.7.0-2~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.7.0-2~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.7.0-1) unstable; urgency=medium
 .
   * [952f6d0] New upstream version 91.7.0
     Fixed CVE issues in upstream version 91.7 (MFSA 2022-12):
     CVE-2022-26383: Browser window spoof using fullscreen mode
     CVE-2022-26384: iframe allow-scripts sandbox bypass
     CVE-2022-26387: Time-of-check time-of-use bug when verifying add-on
                     signatures
     CVE-2022-26381: Use-after-free in text reflows
     CVE-2022-26386: Temporary files downloaded to /tmp and accessible by other
                     local users
thunderbird (1:91.6.2-1) unstable; urgency=medium
 .
   * [2f95b97] New upstream version 91.6.2
     Fixed CVE issues in upstream version 91.6.2 (MFSA 2022-09):
     CVE-2022-26485: Use-after-free in XSLT parameter processing
     CVE-2022-26486: Use-after-free in WebGPU IPC Framework
thunderbird (1:91.6.2-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.6.2-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.6.1-1) unstable; urgency=medium
 .
   * [3edb855] New upstream version 91.6.1
     Fixed CVE issues in upstream version 91.6.1 (MFSA 2022-07):
     CVE-2022-0566: Crafted email could trigger an out-of-bounds write
thunderbird (1:91.6.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.6.1-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.6.0-1) unstable; urgency=medium
 .
   * [884ccb6] New upstream version 91.6.0
     Fixed CVE issues in upstream version 91.6 (MFSA 2022-06):
     CVE-2022-22754: Extensions could have bypassed permission confirmation
                     during update
     CVE-2022-22756: Drag and dropping an image could have resulted in the
                     dropped object being an executable
     CVE-2022-22759: Sandboxed iframes could have executed script if the parent
                     appended elements
     CVE-2022-22760: Cross-Origin responses could be distinguished between
                     script and non-script content-types
     CVE-2022-22761: frame-ancestors Content Security Policy directive was not
                     enforced for framed extension pages
     CVE-2022-22763: Script Execution during invalid object state
     CVE-2022-22764: Memory safety bugs fixed in Thunderbird 91.6
     (Closes: #1004951)
thunderbird (1:91.6.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:91.6.0-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
thunderbird (1:91.5.1-1) unstable; urgency=medium
 .
   * [130bab2] New upstream version 91.5.1
thunderbird (1:91.5.0-2) unstable; urgency=medium
 .
   * [fd07163] autopkgtest: Run check-global-config-path.py only on Intel
thunderbird (1:91.5.0-2~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
   * [3fb049d] d/thunderbird.NEWS: Information about solved issue
thunderbird (1:91.5.0-2~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
   * [5204a6c] d/thunderbird.NEWS: Adjust version to buster
thunderbird (1:91.5.0-1) unstable; urgency=medium
 .
   [ Carsten Schoenert ]
   * [8d4e5f8] New upstream version 91.5.0
     Fixed CVE issues in upstream version 91.5 (MFSA 2022-03):
     CVE-2022-22743: Browser window spoof using fullscreen mode
     CVE-2022-22742: Out-of-bounds memory access when inserting text in edit
                     mode
     CVE-2022-22741: Browser window spoof using fullscreen mode
     CVE-2022-22740: Use-after-free of ChannelEventQueue::mOwner
     CVE-2022-22738: Heap-buffer-overflow in blendGaussianBlur
     CVE-2022-22737: Race condition when playing audio files
     CVE-2021-4140: Iframe sandbox bypass with XSLT
     CVE-2022-22748: Spoofed origin on external protocol launch dialog
     CVE-2022-22745: Leaking cross-origin URLs through securitypolicyviolation
                     event
     CVE-2022-22744: The 'Copy as curl' feature in DevTools did not fully
                     escape website-controlled data, potentially leading to
                     command injection
     CVE-2022-22747: Crash when handling empty pkcs7 sequence
     CVE-2022-22739: Missing throttling on external protocol launch dialog
     CVE-2022-22751: Memory safety bugs fixed in Thunderbird 91.5
   * [a86c0b4] Rebuild patch queue from patch-queue branch
     Modified patch:
     debian-hacks/Add-another-preferences-directory-for-applications-p.patch
     Reworking the patch so LoadDirIntoArray is working again that is adding
     an additional syspref folder for global settings to use.
     (Closes: #997841, #1003280)
   * [442988b] autopkgtest: Adding check for accessing syspref folder
 .
   [ Jochen Sprickerhof ]
   * [5b5d508] d/thunderbird-wrapper.sh: Use 'command -v'
     (Closes:#1002570 )
thunderbird (1:91.4.1-1) unstable; urgency=medium
 .
   * [c5b36d3] New upstream version 91.4.1
     Fixed CVE issues in upstream version 91.4.1 (MFSA 2021-55):
     CVE-2021-4126: OpenPGP signature status doesn't consider additional
                    message content
     CVE-2021-44538: Matrix chat library libolm bundled with Thunderbird
                     vulnerable to a buffer overflow
   * [b66bebb] d/changelog: Update some MOZ-* entries with assigned CVEs
thunderbird (1:91.4.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
   * [303eebe] d/thunderbird.NEWS: Inform about broken system locale detection
thunderbird (1:91.4.1-1~deb10u1) buster-security; urgency=medium
 .
   * Rebuild for buster-security
   * [fa7c995] d/thunderbird.NEWS: Adjust version to buster
thunderbird (1:91.4.0-1) unstable; urgency=medium
 .
   * [7752be0] d/source.filter: Small updates to filtering list
   * [0899850] New upstream version 91.4.0
     Fixed CVE issues in upstream version 91.4 (MFSA 2021-54):
     CVE-2021-43536: URL leakage when navigating while executing asynchronous
                     function
     CVE-2021-43537: Heap buffer overflow when using structured clone
     CVE-2021-43538: Missing fullscreen and pointer lock notification when
                     requesting both
     CVE-2021-43539: GC rooting failure when calling wasm instance methods
     CVE-2021-43541: External protocol handler parameters were unescaped
     CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence
                     of an external protocol handler
     CVE-2021-43543: Bypass of CSP sandbox directive when embedding
     CVE-2021-43545: Denial of Service when using the Location API in a loop
     CVE-2021-43546: Cursor spoofing could overlay user interface when native
                     cursor is zoomed
     CVE-2021-43528: JavaScript unexpectedly enabled for the composition area
     MOZ-2021-0009: Memory safety bugs fixed in Thunderbird 91.4.0
   * [afd7750] d/t.lintian-overrides: Update entries due renamed tags
     Some Lintan tags were renamed, thus requires am adjustment of the existing
     overrides.
   * [30a387c] d/s/lintian-overrides: Adjust most of the existing entries
     Same as before but for the source package.
thunderbird (1:91.3.2-1) unstable; urgency=medium
 .
   * [7fd56f0] New upstream version 91.3.2
   * [4fccecb] Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Fix-Floating-Point-Normalization-breakage-on-32bit-Linux.patch
thunderbird (1:91.3.0-1) unstable; urgency=medium
 .
   * [1d3e0b1] Revert "Rebuild patch queue from patch-queue branch"
     The patch for fixing the broken build on i386 breaks other architectures,
     so reverting for now.
   * [66755b4] New upstream version 91.3.0
     Fixed CVE issues in upstream version 91.3 (MFSA 2021-50):
     CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets
     CVE-2021-38504: Use-after-free in file picker dialog
     CVE-2021-38506: Thunderbird could be coaxed into going into fullscreen
                     mode without notification or warning
     CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass
                     the Same-Origin-Policy on services hosted on other ports
     MOZ-2021-0008: Use-after-free in HTTP2 Session object (no CVE assigned yet)
     CVE-2021-38508: Permission Prompt could be overlaid, resulting in user
                     confusion and potential spoofing
     CVE-2021-38509: Javascript alert box could have been spoofed onto an
                     arbitrary domain
     MOZ-2021-0007: Memory safety bugs fixed in Thunderbird ESR 91.3 (no CVE
                    assigned yet)
thunderbird (1:91.2.1-1) unstable; urgency=medium
 .
   [ Carsten Schoenert ]
   * [bcb5677] d/gbp.conf: Adjust to upstream-91.x
   * [12a433a] New upstream version 91.2.1
   * [f935b52] Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Fix-Floating-Point-Normalization-breakage-on-32bit-Linux.patch
   * [3faba71] Disable usage of system icu package
     The system packages of libicu-dev are to old for Thunderbird, we need to
     use the internel pre-shipped ICU sources.
thunderbird (1:91.2.0-1) experimental; urgency=medium
 .
   * [3c88844] New upstream version 91.2.0
     Fixed CVE issues in upstream version 91.2 (MFSA 2021-47):
     CVE-2021-38502: Downgrade attack on SMTP STARTTLS connections
     CVE-2021-38496: Use-after-free in MessageTask
     CVE-2021-38497: Validation message could have been overlaid on another
                     origin
     CVE-2021-38498: Use-after-free of nsLanguageAtomService object
     CVE-2021-32810: Data race in crossbeam-deque
     CVE-2021-38500: Memory safety bugs fixed in Thunderbird 91.2
     CVE-2021-38501: Memory safety bugs fixed in Thunderbird 91.2
     (Closes: #973042)
thunderbird (1:91.1.1-1) experimental; urgency=medium
 .
   * [73e3b75] New upstream version 91.1.1
   * [3413d35] Rebuild patch queue from patch-queue branch
     Removed patch:
     fixes/Bug-1727113-Never-require-that-addons-are-signed-for-Thun.patch
thunderbird (1:91.1.0-1) experimental; urgency=medium
 .
   * [0b1d9f9] New upstream version 91.1.0
     Fixed CVE issues in upstream version 91.1 (MFSA 2021-41):
     CVE-2021-38495: Memory safety bugs fixed in Thunderbird 91.1
   * [4313e64] Rebuild patch queue from patch-queue branch
     Added patch:
     fixes/Bug-1727113-Never-require-that-addons-are-signed-for-Thun.patch
     (Closes: #993594)
     Modified patch:
     porting-armhf/Bug-1526653-Include-struct-definitions-for-user_vfp-and-u.patch
   * [234c566] d/rules: Don't run dh_autoreconf
     (Closes: #993494)
   * [bce15d7] thunderbird: Set package x11-utils as fallback
     Install x11-utils only if kdialog or zenity aren't present on the system.
thunderbird (1:91.0.2-1) experimental; urgency=medium
 .
   * [a5efefd] New upstream version 91.0.2
     Fixed CVE issues in upstream version 91.0.1 (MFSA 2021-37):
     CVE-2021-29991: Header Splitting possible with HTTP/3 Responses
   * [b21a07b] d/control: increase Standards-Version to 4.6.0
     No further changes needed.
thunderbird (1:91.0-1) experimental; urgency=medium
 .
   * [3be73b6] d/source.filter: some updates to filtering list
   * [5c87a00] New upstream version 91.0
     Fixed CVE issues in upstream version 91.0 (MFSA 2021-36):
     CVE-2021-29986: Race condition when resolving DNS names could have led to
                     memory corruption
     CVE-2021-29981: Live range splitting could have led to conflicting
                     assignments in the JIT
     CVE-2021-29988: Memory corruption as a result of incorrect style treatment
     CVE-2021-29984: Incorrect instruction reordering during JIT optimization
     CVE-2021-29980: Uninitialized memory in a canvas object could have led to
                     memory corruption
     CVE-2021-29987: Users could have been tricked into accepting unwanted
                     permissions on Linux
     CVE-2021-29985: Use-after-free media channels
     CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and
                     type confusion
     CVE-2021-29989: Memory safety bugs fixed in Thunderbird 91
     (Closes: #640927 , #944208, #958433, #952853, #971722, #982670)
   * [0157fe4] d/control: Add new package thunderbird-l10n-af
     Upstream ships localizations for Africaans.
   * [f23e9e0] d/control: Add new package thunderbird-l10n-en-ca
     Upstream ships localizations for English (Canada).
   * [8b3cee9] d/control: Add new package thunderbird-l10n-lv
     Upstream ships localizations for Latvian.
   * [cad58ea] d/control: Add new package thunderbird-l10n-pa-in
     Upstream ships localizations for Punjabi (Gurmukhi).
   * [aecc2da] d/control: Add new package thunderbird-l10n-th
     Upstream ships localizations for Thai.
   * [9707e8a] Moving over to debhelper-compat
     Switch over to recent debhelper-compat 13.
   * [2934049] d/rules: Customize dh_missing call
     Due debhelper-compat dh_missing needs some aditional tweaking as we need
     to ignore some files which are built and installed into the tempory
     install folder but not installed into the package(s).
   * [7df72c6] d/rules: Don't use dwz
     Running and using dwz is bringing no gain and produces issues to, can be
     ignored for now.
   * [1709f28] d/control: Remove non existing packages from Breaks
     xul-ext-firetray and xul-ext-quotecolors are gone from the supported
     releases.
   * [f160918] d/control: Adding Rules-Requires-Root: no
     No specific root access required so far while package build.
thunderbird (1:91.0~b5-1) experimental; urgency=medium
 .
   * [8a9083f] d/control: Adjust VCS links to branch debian/experimental
   * [acf4b3c] d/source.filter: some updates to filtering list
   * [84d1b87] New upstream version 91.0~b5
thunderbird (1:91.0~b3-1) experimental; urgency=medium
 .
   * [90a153b] New upstream version 91.0~b3
   * [ada2cf0] d/control: Remove transitional package lightning
   * [3e5087f] d/control: Remove obsolete lightning-l10-* packages
   * [6eac520] d/control: Remove Suggests on libgtk2.0-0 fur thunderbird
     (Closes: #967771)
thunderbird (1:91.0~b1-1) experimental; urgency=medium
 .
   * [78f0ddb] d/source.filter: some updates to filtering list
   * [3d29fcf] New upstream version 91.0~b1
     (Closes: #990631)
   * [daa7fab] d/control: Increase some Build-Depends
   * [f4bfd22] d/control: Remove libgtk2.0-dev from Build-Depends
   * [ad4e281] d/s/lintian-overrides: Adding one more file to ignore
thunderbird (1:90.0~b2-1) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [3cc0d66] d/source.filter: some updates to filtering list
   * [3c76a94] New upstream version 90.0~b2
   * [46718fe] rebuild patch queue from patch-queue branch
     removed patches:
     fixes/reduce-the-rust-debuginfo-level-on-selected-architectures.patch
     debian-hacks/Work-around-Debian-bug-844357.patch
   * [156d3c9] d/thunderbird.1: Correct debugger option
   * [ca7daca] /u/l/thunderbird: Correct escape sequencing for gdb calling
     (Closes: #976979)
   * [f310330] d/thunderbird-wrapper.sh: Use '${}' syntax for variables
   * [0ef3788] d/thunderbird.install: Remove gtk2 cruft
   * [17b0510] d/copyright: Update due removed content
   * [feca305] d/s/lintian-override: Remove two no longer existing entries
 .
   [ Kevin Locke ]
   * [dbe3c3e] d/thunderbird-wrapper.sh: Make gdb call more fail safe
     (Closes:#942799)
thunderbird (1:89.0~b2-1) experimental; urgency=medium
 .
   * [74911c7] New upstream version 89.0~b2
   * [b4fef2a] rebuild patch queue from patch-queue branch
     modified patches:
     debian-hacks/Don-t-register-plugins-if-the-MOZILLA_DISABLE_PLUGIN.patch
     porting-armhf/Don-t-use-LLVM-internal-assembler-on-armhf.patch
     porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch
     removed patches:
     debian-hacks/Don-t-register-plugins-if-the-MOZILLA_DISABLE_PLUGIN.patch
   * [ea6a29e] d/control: Increase B-D for cbindgen and libnss3-dev
thunderbird (1:88.0~b2-1) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [7af1a0b] New upstream version 88.0~b2
   * [30d1d48] rebuild patch queue from patch-queue branch
     modified patch:
     debian-hacks/Add-another-preferences-directory-for-applications-p.patch
     porting-armhf/Don-t-use-LLVM-internal-assembler-on-armhf.patch
     removed patches (included upstream):
     porting-arm/Reduce-memory-usage-while-linking-on-arm-el-hf-platforms.patch
     porting-s390x/Explicitly-instantiate-TIntermTraverser-traverse-TIntermN.patch
     renamed patch:
     fixes/Load-dependent-libraries-with-their-real-path-to-avo.patch ->
     fixes/Load-dependent-libraries-with-their-real-path.patch
   * [f45da92] d/control: Increase B-D for libnss3-dev
 .
   [ Colomban Wendling ]
   * [bbf78cb] d/thunderbird.desktop: Switch StartupWMClass (Closes: #985366)
 .
   [ Carsten Schoenert ]
   * [a2cc9e0] d/control: Adding nasm to Build-Depends
   * [41fad62] d/copyright: update due removed content
thunderbird (1:86.0~b3-1) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [002f597,fe0515b] d/source.filter: updating the filtering list
   * [dfafc89,35d050f] d/copyright: updates due upstream changes
     Add Apache2 notice for third_party/python/coverage
   * [24c009c] lintian: adding override for false positive in SVG file
   * [d316a1c] New upstream version 86.0~b3
   * [20dc687] rebuild patch queue from patch-queue branch
     modified patch:
     debian/patches/porting-kfreebsd-hurd/adding-missed-HURD-adoptions.patch
   * [21b86f0] d/copyright: update due removed content
   * [7fc9755] d/s/lintian-override: path for TeXZilla.js has changed
   * [33c5d5a] d/s/lintian-override: remove JS file
   * [825a440] d/control: Increase B-D for cbindgen
 .
   [ Pino Toscano ]
   * [35c3c3b] thunderbird: Stop shipping /u/s/p/thunderbird.png symlink
thunderbird (1:85.0~b3-1) experimental; urgency=medium
 .
   * [b142ac6] New upstream version 85.0~b3
   * [0d2221a] d/control: Increase various B-D versions
   * [e4eb52e] rebuild patch queue from patch-queue branch
     added patch:
     debian-hacks/Decrease-Cargo-minimal-version-to-1.46.0.patch
     updated patches:
     debian-hacks/Use-remoting-name-for-call-to-gdk_set_program_class.patch
     fixes/reduce-the-rust-debuginfo-level-on-selected-architectures.patch
thunderbird (1:84.0~b3-1) experimental; urgency=medium
 .
   * [fad5103] calendar-google-provider*: removing left over cruft
   * [b095d8e] thunderbird.NEWS: Add hint about integration of OpenPGP support
   * [0f6bdf3] Revert "d/tb.lintian-overrides: ignore warning about none
     versioned breaks"
   * [f10f80c] d/copyright: update content
   * [9c3fb20] d/source.filter: some updates to filtering list
   * [c9b8274] New upstream version 84.0~b3
   * [adf3835] rebuild patch queue from patch-queue branch
     removed patches:
     fixes/Add-missing-bindings-for-mips-in-the-authenticator-crate.patch
     fixes/fix-function-nsMsgComposeAndSend-to-respect-Replo.patch
     porting-armel/Bug-1463035-Remove-MOZ_SIGNAL_TRAMPOLINE.-r-darchons.patch
     porting-mips/Bug-1642265-MIPS64-Add-branchTestSymbol-and-fallibleUnbox.patch
     porting-s390x/Use-more-recent-embedded-version-of-sqlite3.patch
     porting-m68k/Add-m68k-support-to-Thunderbird.patch
     porting-sh4/Add-sh4-support-to-Thunderbird.patch
   * [3ff9c9d] thunderbird-l10n-all: add thunderbird-l10n-cy
     (Closes: #974127)
   * [393490c] d/control: remove l10n package for Sinhala
   * [1f4e966] d/control: increase Standards-Version to 4.5.1
     No further changes needed.
   * [288afdd] d/rules: use python3 explicitly while calling mach
     Using the Python 3 interpreter is needed otherwise the Mozilla magic tries
     to use a non existing virtualenv environment.
   * [a509bdf] d/watch: update to version 4
     No further changes needed.
   * [fc6b358] d/copyright: update some more content
     Updating the copyright information due upstream modifications.
   * [3bd5713] d/s/lintian-overrides: Adding more file to ignore
thunderbird (1:78.14.0-1) unstable; urgency=medium
 .
   * [6dc6817] d/changelog: Correct TB version for referenced MFSA
   * [38f01f4] d/rules: Don't run dh_autoreconf
     (Closes: #993494)
   * [09c4cde] New upstream version 78.14.0
     Fixed CVE issues in upstream version 78.14.0 (MFSA 2021-42):
     CVE-2021-38493: Memory safety bugs fixed in Thunderbird 78.14 and
                     Thunderbird 91.1

tiff (4.2.0-1+deb11u1) bullseye-security; urgency=high
 .
   [ Thorsten Alteholz <debian@alteholz.de> ]
   * CVE-2022-22844
     out-of-bounds read in _TIFFmemcpy in certain situations involving a
     custom tag and 0x0200 as the second word of the DE field.
   * CVE-2022-0562
     Null source pointer passed as an argument to memcpy() function within
     TIFFReadDirectory(). This could result in a Denial of Service via
     crafted TIFF files.
   * CVE-2022-0561
     Null source pointer passed as an argument to memcpy() function within
     TIFFFetchStripThing(). This could result in a Denial of Service via
     crafted TIFF files.
 .
   [ Laszlo Boszormenyi (GCS) <gcs@debian.org> ]
   * Backport security fix for CVE-2022-0865, crash when reading a file with
     multiple IFD in memory-mapped mode and when bit reversal is needed.
   * Backport security fix for CVE-2022-0908, null source pointer passed as an
     argument to memcpy() function within TIFFFetchNormalTag().
   * Backport security fix for CVE-2022-0907, unchecked return value to null
     pointer dereference in tiffcrop.
   * Backport security fix for CVE-2022-0909, divide by zero error in
     tiffcrop.
   * Backport security fix for CVE-2022-0891, heap buffer overflow in
     ExtractImageSection function in tiffcrop.
   * Backport security fix for CVE-2022-0924, heap buffer overflow in tiffcp.

tigervnc (1.11.0+dfsg-2+deb11u1) bullseye; urgency=medium
 .
   [ John Martin ]
   * TigerVNC 1.11.0 contains a regression that causes vncviewer to display
     incorrect colors when vncviewer and X11 server use different endianness.
     (LP: #1929790)
 .
   [ Joachim Falk ]
   * Fixed typo in tigervncserver man page (Closes: #1003715).
   * Fixed gnome desktop start up when using tigervncserver@.service.
     (Closes: #1004395)

trafficserver (8.1.1+ds-1.1+deb11u1) bullseye-security; urgency=high
 .
   * Multiple CVE fixes for 8.1.x
     + CVE-2021-37147: Improper input validation vulnerability
     + CVE-2021-37148: Improper input validation vulnerability
     + CVE-2021-37149: Improper Input Validation vulnerability
     + CVE-2021-38161: Improper Authentication vulnerability in TLS origin verification
     + CVE-2021-44040: Improper Input Validation vulnerability in request line parsing
     + CVE-2021-44759: Improper Authentication vulnerability in TLS origin validation

twisted (20.3.0-7+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * CVE-2022-21712: Information disclosure results in leaking of HTTP cookie
     and authorization headers when following cross origin redirects
     - debian/patches/CVE-2022-21712-*.patch: Ensure sensitive HTTP headers are
       removed when forming requests, in src/twisted/web/client.py,
       src/twisted/web/test/test_agent.py and src/twisted/web/iweb.py.
     - Thanks Canonical for backporting the patches.
   * CVE-2022-21716: Parsing of SSH version identifier field during an SSH
     handshake can result in a denial of service when excessively large packets
     are received
     - debian/patches/CVE-2022-21716-*.patch: Ensure that length of received
       handshake buffer is checked, prior to processing version string in
       src/twisted/conch/ssh/transport.py and
       src/twisted/conch/test/test_transport.py
     - Thanks Canonical for backporting the patches.
   * CVE-2022-24801: Correct several defects in HTTP request parsing that could
     permit HTTP request smuggling: disallow signed Content-Length headers,
     forbid illegal characters in chunked extensions, forbid 0x prefix to chunk
     lengths, and only strip space and horizontal tab from header values.
     - debian/patches/CVE-2022-24801-*.patch
   * Patch: remove spurious test for illegal whitespace in xmlns, to allow
     tests to pass, again.

tzdata (2021a-1+deb11u4) bullseye; urgency=medium
 .
   * Cherry-pick patches from upstream:
     - 07-no-leap-second-2022-06-30.patch: update leap-seconds.list, new
       expiration date on 28 December 2022.  Closes: #1012191.
tzdata (2021a-1+deb11u3) bullseye; urgency=medium
 .
   * Cherry-pick patches from tzdata-2022a:
     - 06-palestine-dst2.patch: Palestine will spring forward on 2022-03-27,
       not -03-26..

ublock-origin (1.42.0+dfsg-1~deb11u1) bullseye; urgency=medium
 .
   * Backport to Bullseye.
   * Correct the mistake in debian/changelog and produce a valid changelog file.
     (Closes: #996249)
ublock-origin (1.42.0+dfsg-1~deb10u1) buster; urgency=medium
 .
   * Backport to Buster.
   * Correct the mistake in debian/changelog and produce a valid changelog file.
     (Closes: #996249)
ublock-origin (1.40.2+dfsg-1) unstable; urgency=medium
 .
   * New upstream version 1.40.2+dfsg.
ublock-origin (1.39.0+dfsg-2) unstable; urgency=medium
 .
   * Fix debian/watch to detect new upstream releases.
ublock-origin (1.39.0+dfsg-1) unstable; urgency=medium
 .
   * New upstream version 1.39.0+dfsg.
   * Skip the tests.
ublock-origin (1.37.0+dfsg-1) unstable; urgency=medium
 .
   * New upstream version 1.37.0+dfsg.
     - Fix CVE-2021-36773:
       uBlock supported an arbitrary depth of parameter nesting for strict
       blocking, which allows crafted web sites to cause a denial of service
       (unbounded recursion that can trigger memory consumption and a loss of
       all blocking functionality).
       Thanks to Marcus Frings for the report. (Closes: #991386)
   * Declare compliance with Debian Policy 4.6.0.

unrar-nonfree (1:6.0.3-1+deb11u1) bullseye; urgency=high
 .
   * Fix CVE-2022-30333 (Closes: #1010837)

usb.ids (2022.05.20-0+deb11u1) bullseye; urgency=medium
 .
   * Upload to bullseye.
usb.ids (2022.05.09-1) unstable; urgency=medium
 .
   * New upstream version.
   * Bump Standards-Version to 4.6.1 (no changes).
usb.ids (2022.04.02-1) unstable; urgency=medium
 .
   * New upstream version.
usb.ids (2022.02.15-1) unstable; urgency=medium
 .
   * New upstream version.

vlc (3.0.17.4-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version 3.0.17.4
     - Fix an infinite loop in MP4
     - Fix crashes with VP9 streams
   * debian/gbp.conf: Work in bullseye branch
vlc (3.0.17.4-0+deb10u1) buster-security; urgency=medium
 .
   * New upstream version 3.0.17.4
     - Fix remote code execution through crafted playlist
       (VideoLAN-SB-VLC-3013)
     - Fix an infinite loop in MP4
     - Fix crashes with VP9 streams
vlc (3.0.17.3-1) unstable; urgency=medium
 .
   * New upstream version 3.0.17.3
   * debian/
     - Revert "Disable srt until the package is fixed" (Closes: #983109)
       Thanks to Florian Ernst
     - Move srt output plugin to vlc-plugin-access-extra
vlc (3.0.17-1) unstable; urgency=medium
 .
   * New upstream version 3.0.17
     - Fix build with ffmpeg 5.0 (Closes: #1004584)
   * debian/control:
     - Switch to libidn-dev
     - Bump BD on libopenmpt-modplug-dev
     - Bump Standards-Version
   * debian/copyright:
     - Add missing text to BSD-2-clause
     - Update copyright for 3.0.17
   * debian/patches: Refresh patches
   * debian/rules: Set VLC_COMPILE_BY and VLC_COMPILE_HOST (Closes: #990246)
   * debian/: Update lintian override

waitress (1.4.4-1.1+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Security update, resolving a request smuggling vulnerability:
     When using previous Waitress versions behind a proxy that does not
     properly validate the incoming HTTP request matches the RFC7230 standard,
     Waitress and the frontend proxy may disagree on where one request starts
     and where it ends. This would allow requests to be smuggled via the
     front-end proxy to waitress and later behavior.
     CVE-2022-24761 (Closes: #1008013)

webkit2gtk (2.36.3-1~deb11u1) bullseye-security; urgency=high
 .
   * Rebuild for bullseye-security.
     - This fixes CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
       CVE-2022-26717, CVE-2022-26719, CVE-2022-30293 and CVE-2022-30294.
   * gcc 10 segfaults when building webkit in some architectures (see
     #1008098) so use clang instead. The exceptions are i386 and mipsel,
     where gcc works fine but clang is the buggy one (see #1010329).
     - debian/rules: Tell CMake to use clang.
     - debian/control: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO.
     - debian/control: Remove build dependency on libsoup3 and ccache and
       remove the entries for all 4.1 API packages (soup3 build).
webkit2gtk (2.36.3-1~deb10u1) buster-security; urgency=high
 .
   * Rebuild for buster-security.
     - This fixes CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
       CVE-2022-26717, CVE-2022-26719, CVE-2022-30293 and CVE-2022-30294.
   * debian/patches/force-single-process.patch:
     - Force the single-process mode in Evolution and Geary
   * debian/control:
     - Remove all 4.1 API packages (soup3 build).
     - Remove Breaks for Evolution < 3.34.1.
     - Remove build dependencies on ccache, libwpebackend-fdo-1.0-dev,
       libmanette-0.2-dev, liblcms2-dev and libsoup-3.0-dev.
     - Switch build dependency from libenchant-2-dev to libenchant-dev.
     - Switch build dependencies on libgl-dev and libgles-dev with
       libgl1-mesa-dev and libgles2-mesa-dev.
   * Downgrade xdg-desktop-portal-gtk from a recommendation to a
     suggestion (See #989307)
   * debian/rules:
     - Build with -DENABLE_GAMEPAD=OFF -DUSE_LCMS=OFF.
   * Set the debhelper compatibility level back to 10. This fixes a dh_dwz
     error ".debug_info section not present"
     - Add debian/compat file.
     - Update build dependency on debhelper.
webkit2gtk (2.36.2-1) unstable; urgency=high
 .
   [ Alberto Garcia ]
   * New upstream release.
 .
   [ Adrian Bunk ]
   * debian/rules: lower memory requirements on sh4.
webkit2gtk (2.36.1-1) unstable; urgency=medium
 .
   [ Alberto Garcia ]
   * New upstream release.
 .
   [ Jeremy Bicha ]
   * Reduce the number of parallel build jobs on Ubuntu's amd64
webkit2gtk (2.36.0-3) unstable; urgency=medium
 .
   * debian/rules:
     - Build with -Os, -g0 and ggc-min-expand=10 in mips / mipsel in order
       to lower the memory requirements and revert the changes from
       2.36.0-2 (thanks, Adrian Bunk).
webkit2gtk (2.36.0-3~deb11u1) bullseye-security; urgency=high
 .
   * Rebuild for bullseye-security.
     - This fixes CVE-2022-22624, CVE-2022-22628 and CVE-2022-22629.
   * gcc 10 segfaults when building webkit (see #1008098) so use clang instead.
     - debian/rules: Tell CMake to use clang.
     - debian/control: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO.
     - debian/control: Remove build dependency on libsoup3 and remove the
       entries for all 4.1 API packages (soup3 build).
webkit2gtk (2.36.0-3~deb10u1) buster-security; urgency=high
 .
   * Rebuild for buster-security.
     - This fixes CVE-2022-22624, CVE-2022-22628 and CVE-2022-22629.
   * debian/patches/force-single-process.patch:
     - Force the single-process mode in Evolution and Geary
   * debian/patches/support-ruby2.5.patch:
     - Support building with Ruby 2.5.
   * debian/control:
     - Remove all 4.1 API packages (soup3 build).
     - Remove Breaks for Evolution < 3.34.1.
     - Remove build dependencies on libwpebackend-fdo-1.0-dev,
       libmanette-0.2-dev, liblcms2-dev and libsoup-3.0-dev.
     - Switch build dependency from libenchant-2-dev to libenchant-dev.
     - Switch build dependencies on libgl-dev and libgles-dev with
       libgl1-mesa-dev and libgles2-mesa-dev.
   * Downgrade xdg-desktop-portal-gtk from a recommendation to a
     suggestion (See #989307)
   * debian/rules:
     - Build with -DENABLE_GAMEPAD=OFF -DUSE_LCMS=OFF.
   * Set the debhelper compatibility level back to 10. This fixes a dh_dwz
     error ".debug_info section not present"
     - Add debian/compat file.
     - Update build dependency on debhelper.
webkit2gtk (2.36.0-2) unstable; urgency=medium
 .
   * debian/rules:
     - Disable unified builds in Debian/mipsel and reduce the number of
       parallel jobs in order to prevent running out of memory.
   * debian/control:
     - Clarify in package descriptions that 4.0 and 4.1 packages use
       different versions of libsoup and that the documentation package is
       equally valid for both.
webkit2gtk (2.36.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Refresh all patches.
   * debian/rules:
     + Build with CMAKE_BUILD_WITH_INSTALL_RPATH=ON, otherwise builds are
       not reproducible if they happen in different directories.
   * Bring all changes from the 2.35 (experimental) branch.
   * debian/control:
     + Make libjavascriptcoregtk-4.0-dev depend on libglib2.0-dev.
   * debian/source/lintian-overrides:
     + Update source-is-missing overrides.
   * debian/libwebkit2gtk-4.0-37.symbols:
     + Update symbols.
   * debian/copyright:
     + Update copyright information of all files.
   * debian/gbp.conf:
     + Update upstream branch name.
   * debian/rules:
     + USE_SYSTEMD was renamed to ENABLE_JOURNALD_LOG.
   * debian/control:
     + Remove all Conflicts: lines, they are obsolete.
     + Make libjavascriptcoregtk-4.0-dev depend on libglib2.0-dev.
     + Simplify descriptions and remove references to the WebKit2 API
       layer.
   * Build the 4.1 API version of the packages. These use libsoup 3 instead
     of libsoup 2 but are otherwise identical to the 4.0 API packages.
     + debian/control:
       - Add build dependency on libsoup-3.0-dev.
       - Add entries for the new packages. The 4.1 versions of the
         WebDriver, JSC command-line interpreter and documentation are
         currently not being generated.
     + debian/rules:
       - Add commands to build both sets of packages.
     + debian/libwebkit2gtk-4.0-37.install:
       - Update path of locale files to select only the exact API version.
     + debian/not-installed:
       - Don't install the 4.1 build of the JSC command-line interpreter.
webkit2gtk (2.35.90-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * debian/source/lintian-overrides:
     + Update source-is-missing overrides.
   * debian/rules:
     + USE_SYSTEMD was renamed to ENABLE_JOURNALD_LOG.
   * debian/control:
     + Remove all Conflicts: lines, they are obsolete.
     + Make libjavascriptcoregtk-4.0-dev depend on libglib2.0-dev.
     + Simplify descriptions and remove references to the WebKit2 API
       layer.
   * Build the 4.1 API version of the packages. These use libsoup 3 instead
     of libsoup 2 but are otherwise identical to the 4.0 API packages.
     + debian/control:
       - Add build dependency on libsoup-3.0-dev and libsysprof-4-dev (the
         latter should be pulled by libsoup).
       - Add entries for the new packages. The 4.1 versions of the
         WebDriver, JSC command-line interpreter and documentation are
         currently not being generated.
     + debian/rules:
       - Add commands to build both sets of packages.
     + debian/libwebkit2gtk-4.0-37.install:
       - Update path of locale files to select only the exact API version.
     + debian/not-installed:
       - Don't install the 4.1 build of the JSC command-line interpreter.
webkit2gtk (2.35.3-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
webkit2gtk (2.35.2-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/copyright:
     + Update copyright information of all files.
   * Set the debhelper compatibility level to 12:
     + Get rid of debian/compat.
     + Add build dependency on debhelper-compat.
   * debian/rules:
     + Stop using --builddirectory=build, .gir files no longer seem to
       contain references to the build directory (see the 2.27.90-1 entry
       for more details).
     + Explicitly disable lto since when it's on the build is failing, that
       doesn't impact Debian by default but is an issue on Ubuntu.
       (See #1000598)
     + Don't recommend xdg-desktop-portal-gtk on Ubuntu i386, it's a partial
       architecture and the binary doesn't exist (See #1000599).
   * Refresh all patches.
   * debian/source/lintian-overrides:
     + Update source-is-missing overrides.
webkit2gtk (2.35.1-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/watch, debian/gbp.conf:
     + Update for 2.35.x packages in experimental.
   * Refresh all patches.
   * debian/libwebkit2gtk-4.0-37.symbols:
     + Update symbols.
webkit2gtk (2.34.6-1) unstable; urgency=high
 .
   [ Alberto Garcia ]
   * New upstream release.
     + Fixes CVE-2022-22620.
 .
   [ Jeremy Bicha ]
   * debian/rules:
     + Reduce the number of parallel build jobs on Ubuntu's arm64.

wireless-regdb (2022.04.08-2~deb11u1) bullseye; urgency=medium
 .
   * Backport to bullseye:
     - Revert "Remove support for loading through crda"
     - Add my signature for regulatory.bin
     - d/salsa-ci.yml: Set RELEASE to bullseye
   * d/tests/check-signatures: Fix typo in openssl command line
wireless-regdb (2022.04.08-1) unstable; urgency=medium
 .
   * New upstream version:
     - Raise DFS TX power limit to 250 mW (24 dBm) for the US
     - Update regulatory rules for Croatia (HR) on 6GHz
     - Update regulatory rules for France (FR) on 6 and 60 GHz
     - add support for US S1G channels
     - add 802.11ah bands to world regulatory domain
     - Update regulatory rules for Spain (ES) on 6GHz
     - Update regulatory rules for South Korea (KR)
     - Update regulatory rules for China (CN) (Closes: #1006127)
     - Update regulatory rules for the Netherlands (NL) on 6GHz
     - Update regulatory rules for Israel (IL)
     - Update regulatory rules for Australia (AU)
   * d/salsa-ci.yml: Add CI configuration for salsa.debian.org
   * Remove support for loading through crda (Closes: #973551, #1004347)
   * d/.gitignore: Ignore another debhelper temporary file
wireless-regdb (2021.08.28-1) unstable; urgency=medium
 .
   * New upstream version (Closes: #986208):
     - Update regulatory rules for Egypt (EG), Croatia (HR), Pakistan (PK)
       on 5GHz, Great Britain (GB), Kazakhstan (KZ), Ukraine (UA), Cuba (CU)
       on 5Ghz, Germany (DE) on 6GHz, Norway (NO) on 6 and 60 GHz, Ecuador (EC)
     - US: restore channel 12 & 13 limitation
     - US: remove PTMP-ONLY from 5850-5895 MHz
     - US: reduce bandwidth for 5730-5850 and 5850-5895 MHz
     - ES: Update CNAF regulation url

wpewebkit (2.36.3-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
     - This fixes CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
       CVE-2022-26717, CVE-2022-26719, CVE-2022-30293 and CVE-2022-30294.
   * gcc 10 segfaults when building webkit (see #1008098) so use clang instead.
     - debian/rules: tell CMake to user clang in all arches except i386 and
       mipsel (see ##1010329)
     - debian/control.in: Build depend on clang.
   * Use libsoup2 instead of libsoup3:
     - debian/rules: Set USE_SOUP_VERSION=2.
wpewebkit (2.36.1-1) unstable; urgency=medium
 .
   * New upstream release.
   * debian/rules:
     - Reduce the number of parallel build jobs on Ubuntu's amd64 (thanks,
       Jeremy Bicha).
     - Re-enable unified builds in Debian/mipsel, the changes from Adrian
       Bunk should be enough to make this build again.
wpewebkit (2.36.0-2) unstable; urgency=medium
 .
   * debian/rules:
     - Build with -Os, -g0 and ggc-min-expand=10 in mips / mipsel in order
       to lower the memory requirements (thanks, Adrian Bunk).
wpewebkit (2.36.0-2~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
     - This fixes CVE-2022-22624, CVE-2022-22628 and CVE-2022-22629.
   * gcc 10 segfaults when building webkit (see #1008098) so use clang instead.
     - debian/rules: Tell CMake to use clang.
     - debian/control: Build depend on clang.
   * Use libsoup2 instead of libsoup3:
     - debian/rules: Set USE_SOUP_VERSION=2.
     - debian/control: Replace all build dependencies and remove the
       libwpewebkit-1.1 packages.
wpewebkit (2.36.0-1) experimental; urgency=medium
 .
   * New upstream release.
   * debian/gbp.conf:
     + Update upstream branch name.
   * Refresh all patches.
   * Update copyright information of all files.
   * debian/source/lintian-overrides:
     + Update source-is-missing overrides.
   * debian/libwpewebkit-1.0-3.symbols:
     + Update symbols.
   * debian/rules:
     + Build with CMAKE_BUILD_WITH_INSTALL_RPATH=ON, otherwise builds are
       not reproducible if they happen in different directories.
     + Override the dh_auto_clean rule to remove all python cache files.
     + Disable unified builds in Debian/mipsel and reduce the number of
       parallel jobs in order to prevent running out of memory.
   * Build the 1.1 API version of the packages. These use libsoup 3 instead
     of libsoup 2 but are otherwise identical to the 1.0 API packages.
     + debian/control:
       - Add build dependency on libsoup-3.0-dev.
       - Add entries for the new packages.
     + debian/rules:
       - Add commands to build both sets of packages.
wpewebkit (2.34.6-1) unstable; urgency=high
 .
   * New upstream release.
     + Fixes CVE-2022-22620.

xen (4.14.4+74-gd7b22226b5-1) bullseye-security; urgency=medium
 .
   * Update to new upstream version 4.14.4+74-gd7b22226b5, which also contains
     security fixes for the following issues:
     - arm: guest_physmap_remove_page not removing the p2m mappings
       XSA-393 CVE-2022-23033
     - A PV guest could DoS Xen while unmapping a grant
       XSA-394 CVE-2022-23034
     - Insufficient cleanup of passed-through device IRQs
       XSA-395 CVE-2022-23035
     - Racy interactions between dirty vram tracking and paging log dirty
       hypercalls
       XSA-397 CVE-2022-26356
     - Multiple speculative security issues
       XSA-398 (no CVE yet)
     - race in VT-d domain ID cleanup
       XSA-399 CVE-2022-26357
     - IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues
       XSA-400 CVE-2022-26358 CVE-2022-26359 CVE-2022-26360 CVE-2022-26361
   * Note that the following XSA are not listed, because...
     - XSA-391, XSA-392 and XSA-396 have patches for the Linux kernel.
xen (4.14.3+32-g9de3671772-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.14.3+32-g9de3671772, which also contains
     security fixes for the following issues:
     - guests may exceed their designated memory limit
       XSA-385 CVE-2021-28706
     - PCI devices with RMRRs not deassigned correctly
       XSA-386 CVE-2021-28702
     - PoD operations on misaligned GFNs
       XSA-388 CVE-2021-28704 CVE-2021-28707 CVE-2021-28708
     - issues with partially successful P2M updates on x86
       XSA-389 CVE-2021-28705 CVE-2021-28709
   * Note that the following XSA are not listed, because...
     - XSA-387 only applies to Xen 4.13 and older
     - XSA-390 only applies to Xen 4.15
   * Pick the following upstream commits to fix a regression which prevents
     amd64 type hardware to fully power off. The issue was introduced in
     version 4.14.0+88-g1d1d1f5391-1 after including upstream commits to
     improve Raspberry Pi 4 support. (Closes: #994899):
     - 8b6d55c126 ("x86/ACPI: fix mapping of FACS")
     - f390941a92 ("x86/DMI: fix table mapping when one lives above 1Mb")
     - 0f089bbf43 ("x86/ACPI: fix S3 wakeup vector mapping")
     - 16ca5b3f87 ("x86/ACPI: don't invalidate S5 data when S3 wakeup vector
                    cannot be determined")

xz-utils (5.2.5-2.1~deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Rebuild for bullseye-security.
 .
 xz-utils (5.2.5-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * xzgrep: Fix escaping of malicious filenames (ZDI-CAN-16587)
     (CVE-2022-1271) (Closes: #1009167)

zlib (1:1.2.11.dfsg-2+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix a bug that can crash deflate on some input when using Z_FIXED
     (CVE-2018-25032) (Closes: #1008265)
=======================================
Sat, 26 Mar 2022 - Debian 11.3 released
=======================================
=========================================================================
[Date: Sat, 26 Mar 2022 09:37:35 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

btrfs-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
btrfs-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
btrfs-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
cdrom-core-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
cdrom-core-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
cdrom-core-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
crc-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
crc-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
crc-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
crypto-dm-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
crypto-dm-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
crypto-dm-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
crypto-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
crypto-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
crypto-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
dasd-extra-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
dasd-extra-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
dasd-extra-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
dasd-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
dasd-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
dasd-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
ext4-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
ext4-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
ext4-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
f2fs-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
f2fs-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
f2fs-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
fat-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
fat-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
fat-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
fuse-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
fuse-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
fuse-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
isofs-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
isofs-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
isofs-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
kernel-image-5.10.0-11-s390x-di |  5.10.92-2 | s390x
kernel-image-5.10.0-12-s390x-di | 5.10.103-1 | s390x
kernel-image-5.10.0-9-s390x-di |  5.10.70-1 | s390x
linux-headers-5.10.0-11-s390x |  5.10.92-2 | s390x
linux-headers-5.10.0-12-s390x | 5.10.103-1 | s390x
linux-headers-5.10.0-9-s390x |  5.10.70-1 | s390x
linux-image-5.10.0-11-s390x |  5.10.92-2 | s390x
linux-image-5.10.0-11-s390x-dbg |  5.10.92-2 | s390x
linux-image-5.10.0-12-s390x | 5.10.103-1 | s390x
linux-image-5.10.0-12-s390x-dbg | 5.10.103-1 | s390x
linux-image-5.10.0-9-s390x |  5.10.70-1 | s390x
linux-image-5.10.0-9-s390x-dbg |  5.10.70-1 | s390x
loop-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
loop-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
loop-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
md-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
md-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
md-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
mtd-core-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
mtd-core-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
mtd-core-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
multipath-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
multipath-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
multipath-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
nbd-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
nbd-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
nbd-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
nic-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
nic-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
nic-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
scsi-core-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
scsi-core-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
scsi-core-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
scsi-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
scsi-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
scsi-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
udf-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
udf-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
udf-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x
xfs-modules-5.10.0-11-s390x-di |  5.10.92-2 | s390x
xfs-modules-5.10.0-12-s390x-di | 5.10.103-1 | s390x
xfs-modules-5.10.0-9-s390x-di |  5.10.70-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 26 Mar 2022 09:37:46 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
affs-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
affs-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
affs-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
affs-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
affs-modules-5.10.0-9-octeon-di |  5.10.70-1 | mips64el, mipsel
ata-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
ata-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
ata-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
btrfs-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
btrfs-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
btrfs-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
btrfs-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
btrfs-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
btrfs-modules-5.10.0-9-octeon-di |  5.10.70-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
cdrom-core-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
cdrom-core-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
cdrom-core-modules-5.10.0-9-octeon-di |  5.10.70-1 | mips64el, mipsel
crc-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
crc-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
crc-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
crc-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
crc-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
crc-modules-5.10.0-9-octeon-di |  5.10.70-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
crypto-dm-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
crypto-dm-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-9-loongson-3-di |  5.10.70-1 | mips64el, mipsel
crypto-dm-modules-5.10.0-9-octeon-di |  5.10.70-1 | mips64el, mipsel
crypto-modules-5.10.0-11-loongson-3-di |  5.10.92-2 | mips64el, mipsel
crypto-modules-5.10.0-11-octeon-di |  5.10.92-2 | mips64el, mipsel
crypto-modules-5.10.0-12-loongson-3-di | 5.10.103-1 | mips64el, mipsel
crypto-modules-5.10.0-12-octeon-di | 5.10.103-1 | mips64el, mipsel
crypto-modules-5.10.0-9-loongson-3