usb: mon: make mmapped memory read only

Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu

net/sched: flower: fix possible OOB write in fl_set_geneve_opt()

hw: amd: Cross-Process Information Leak

netfilter: nf_tables: deactivate anonymous set from preparation phase

netfilter: nf_tables: deactivate anonymous set from preparation phase (adaptation)

netfilter: nf_tables: do not allow SET_ID to refer to another table

netfilter: nf_tables: skip deactivated anonymous sets during lookups

netfilter: nf_tables: prevent OOB access in nft_byteorder_eval

Smart Patch for net/sched: cls_u32: Fix reference counter leak leading to overflow

Smart Patch for net/sched/cls_u32.c

net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free

net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free

net/sched: cls_fw: Fix improper refcount update leads to use-after-free

net/sched: sch_qfq: account for stab overhead in qfq_enqueue

Complex adaptation required.

net/sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg

revert of: netfilter: ipset: actually allow allowable CIDR 0 in hash:net, port, net

Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM

Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm

net: sched: sch_qfq: Fix UAF in qfq_dequeue()

net: sched: sch_qfq: Fix UAF in qfq_dequeue() (adaptation)

fbcon driver was updated and patched in the same kernel 3.10.0-1160.111.1.el7. Older versions don't contain vulnerabilities b07db3958485 and d443d9386472

igb: set max size RX buffer when store bad packet is enabled

igb: set max size RX buffer when store bad packet is enabled (adaptation)

netfilter: nf_tables: reject QUEUE/DROP verdict parameters

sched/membarrier: reduce the ability to hammer on sys_membarrier

[PATCH 1681/1699] af_unix: Fix null-ptr-deref in

[PATCH 1658/1699] net/sched: sch_hfsc: Ensure inner classes have fsc

[PATCH 1659/1699] net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it

[PATCH 1686/1699] bluetooth: Perform careful capability checks in

[PATCH 1689/1699] bluetooth: Add cmd validity checks at the start of

[PATCH 1696/1699] vt: vt_ioctl: fix race in VT_RESIZEX

[PATCH 1643/1699] RDMA/i40iw: Prevent zero-length STAG registration

RDMA/irdma: Prevent zero-length STAG registration (adaptation)

net: fix __dst_negative_advice() race

fuse: fix pipe buffer lifetime for direct_io

fuse: fix pipe buffer lifetime for direct_io

wifi: mac80211: Avoid address calculations via out of bounds array indexing

x86/bhi: Add support for clearing branch history at syscall entry

media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format

can: bcm: Fix UAF in bcm_proc_show()

HID: core: zero-initialize the report buffer

ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices

ALSA: usb-audio: Fix a DMA to stack memory bug

ALSA: usb-audio: Fix out of bounds reads when finding clock sources

netfilter: ipset: add missing range check in bitmap_ip_uadt

net: atm: fix use after free in lec_send()

net: atlantic: fix aq_vec index out of range error

HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()

media: uvcvideo: Fix double free in error path

misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()

ext4: fix off-by-one error in do_split

drivers:md:fix a potential use-after-free bug

sch_hfsc: make hfsc_qlen_notify() idempotent

ext4: avoid resizing to a partial cluster size

Change signature of qdisc_tree_reduce_backlog() to use ints

net/sched: Always pass notifications when child class becomes empty

sch_cbq: make cbq_qlen_notify() idempotent

sch_htb: make htb_deactivate() idempotent

codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()

sch_qfq: make qfq_qlen_notify() idempotent

sch_drr: make drr_qlen_notify() idempotent

sch_htb: make htb_qlen_notify() idempotent

sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()

crypto: algif_hash - fix double free in hash_accept

scsi: lpfc: Use memcpy() for BIOS version

posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del()

Restrict access to pagemap/kpageflags/kpagecount

net: usb: smsc75xx: Limit packet length to skb->len

net: usb: smsc75xx: Move packet length check to prevent kernel panic in skb_pull

net/sched: sch_qfq: Fix race condition on qfq_aggregate

nALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface()

i40e: fix MMIO write access to an invalid page in i40e_clear_hw

ALSA: bcd2000: Fix a UAF bug on the error path of probing

md-raid10: fix KASAN warning