sctp: implement memory accounting on rx path

sctp: fully support memory accounting

btrfs: inode: Verify inode mode to avoid NULL pointer dereference

drm/amd/display: prevent memory leak

th9k: release allocated buffer if timed out

ath9k_htc: release allocated buffer if timed out

tracing: Have error path in predicate_parse() free its allocated memory

drm/amdgpu: fix multiple memory leaks in acp_hw_init

media: rc: prevent memory leak in cx23888_ir_probe

crypto: ccp - Release all allocated memory if sha type is invalid

Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()

Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()

ACPI: configfs: Disallow loading ACPI tables when locked down

ext4: fix potential negative array index in do_split()

Fix for missing check in vgacon scrollback handling

random32: update the net random state on interrupt and activity

net/packet: fix overflow in tpacket_rcv

xfs: fix boundary test in xfs_attr_shortform_verify

nfs: Fix getxattr kernel panic and memory overflow

mm/hugetlb: fix a race between hugetlb sysctl handlers

rbd: require global CAP_SYS_ADMIN for mapping and unmapping

btrfs only search for left_info if there is no right_info

vfio: access to disabled MMIO space of some devices may lead to DoS scenario

vfio: access to disabled MMIO space of some devices may lead to DoS scenario

iio: imu: adis16400: fix memory leak

cgroup: fix cgroup_sk_alloc() for sk_clone_lock()

cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone()

cgroup: Fix sock_cgroup_data on big-endian.

net/nfc/rawsock.c: add CAP_NET_RAW check

block: allow for_each_bvec to support zero len bvec

fbcon: remove soft scrollback code

fbcon: remove soft scrollback code (adaptation)

buffer overflow issues in Intel i40 driver.

buffer overflow issues in Intel i40 driver.

buffer overflow issues in Intel i40 driver.

buffer overflow issues in Intel i40 driver.

Bluetooth: L2CAP: Fix calling sk_filter on non-socket based

Bluetooth: L2CAP: Fix calling sk_filter on non-socket based

Bluetooth: A2MP: Fix not initializing all members

netfilter: ctnetlink: add a range check for l3/l4 protonum

hdlc_ppp: add range checks in ppp_cp_parse_cr()

geneve: add transport ports in route lookup for geneve

blktrace: fix debugfs use after free

blktrace: ensure our debugfs dir exists

perf/core: Fix race in the perf_mmap_close() function

perf/core: Fix a memory leak in perf_event_parse_addr_filter()

vt: Disable KD_FONT_OP_COPY

speakup: Do not let the line discipline be used several times

btrfs: extent_io: Kill the forward declaration of flush_write_bio

btrfs: extent_io: Move the BUG_ON() in flush_write_bio() one level up

btrfs: extent_io: Handle errors better in extent_write_full_page()

btrfs: extent_io: Handle errors better in btree_write_cache_pages()

btrfs: ioctl: resize: only show message if size is changed

btrfs: Don't submit any btree write bio if the fs has errors

vt: keyboard, simplify vt_kdgkbsent

vt: keyboard, extend func_buf_lock to readers

binder: fix UAF when releasing todo list

tty: make FONTX ioctl use the tty pointer they were actually passed

Input: sunkbd - avoid use-after-free in teardown paths

icmp: randomize the global rate limiter

futex: Handle transient ownerless rtmutex state correctly (CVE-2021-3347 dependency)

futex: Ensure the correct return value from futex_lock_pi

futex: Replace pointless printk in fixup_owner

futex: Simplify fixup_pi_state_owner

futex: Provide and use pi_state_update_owner

futex: Handle faults correctly for PI futexes

nfsd4: readdirplus shouldn't return parent of export

[PATCH] netfilter: add and use nf_hook_slow_list()

tty: Fix ->pgrp locking in tiocspgrp()

tty: Fix ->session locking

mwifiex: Fix possible buffer overflows in

scsi: target: Fix XCOPY NAA identifier lookup

UBUNTU: SAUCE: target: fix XCOPY NAA identifier lookup (adaptation )

[PATCH] tracing: Fix race in trace_open and buffer resize call

speakup: Reject setting the speakup line discipline outside of

xen-blkback: set ring->xenblkd to NULL after kthread_stop()

jfs: Fix array index bounds check in dbAdjTree

limit size of watch_events dom0 queue.

handle xenwatch_thread patching.

nbd: Fix memory leak in nbd_add_socket

sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output

scsi: iscsi: Restrict sessions and handles to admin capabilities

scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE

scsi: iscsi: Verify lengths on passthrough PDUs

nbd: freeze the queue while we're adding connections

Xen/x86: don't bail early from clear_foreign_p2m_mapping()

Xen/x86: also check kernel mapping in set_foreign_p2m_mapping()

Xen/gntdev: correct dev_bus_addr handling in gntdev_map_grant_pages()

Xen/gntdev: correct error checking in gntdev_map_grant_pages()

xen-blkback: don't "handle" error by BUG()

xen-netback: don't "handle" error by BUG()

xen-scsiback: don't "handle" error by BUG()

xen-blkback: fix error handling in xen_blkbk_map()

Xen/gnttab: handle p2m update errors on a per-slot basis

xen-netback: respect gnttab_map_refs()'s return value

staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan()

ext4: catch integer overflow in ext4_cache_extents

bpf: Simplify alu_limit masking for pointer arithmetic

bpf: Simplify alu_limit masking for pointer arithmetic

bpf: Simplify alu_limit masking for pointer arithmetic

bpf: Simplify alu_limit masking for pointer arithmetic

gup: document and work around "COW can break either way" issue

PCI: rpadlpar: Fix potential drc_name corruption in store functions

perf/x86/intel: Fix a crash caused by zero PEBS status

btrfs: fix race when cloning extent buffer during rewind of an old

gianfar: fix jumbo packets+napi+rx overrun crash

netfilter: x_tables: Use correct memory barriers

net: qrtr: fix a kernel-infoleak in qrtr_recvmsg()

xen-blkback: don't leak persistent grants from xen_blkbk_map()

firewire: nosy: Fix a use-after-free bug in nosy_ioctl()

bpf: Fix masking negation logic upon negative dst register

bpf: Simplify alu_limit masking for pointer arithmetic

sctp: delay auto_asconf init until binding the first addr

An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c

dm ioctl: fix out of bounds array access when no devices

race condition for removal of the HCI controller.

mac80211: assure all fragments are encrypted

mac80211: assure all fragments are encrypted

cfg80211: mitigate A-MSDU aggregation attacks

Bluetooth: fix the erroneous flush_work() order

Bluetooth: use correct lock to prevent UAF of hdev object

Bluetooth: SMP: Fail if remote and local public keys are identical

mac80211: prevent mixed key and fragment cache attacks

mac80211: prevent mixed key and fragment cache attacks

mac80211: prevent mixed key and fragment cache attacks

mac80211: prevent mixed key and fragment cache attacks

mac80211: prevent mixed key and fragment cache attacks

Bluetooth: verify AMP hci_chan before amp_destroy

Bluetooth: verify AMP hci_chan before amp_destroy

mac80211: add fragment cache to sta_info

bpf, x86: Validate computation of branch displacements for x86-64

bpf, x86: Validate computation of branch displacements for x86-64

netfilter: x_tables: fix compat match/target pad out-of-bound write

seq_file: Disallow extremely large seq buffer allocations

KVM: SVM: Periodically schedule when unregistering regions on destroy

can: bcm: fix infoleak in struct bcm_msg_head

UBUNTU: SAUCE: can: bcm: delay release of struct bcm_op after synchronize_rcu

Restrict access to pagemap/kpageflags/kpagecount