xprtrdma: fix incorrect header size calculations

block-map: add __GFP_ZERO flag for alloc_page in function

ext4: verify dir block before splitting it

ext4: make variable "count" signed

ext4: avoid cycles in directory h-tree

perturb functionality missing in kernels earlier than 4.14.285-215.501.amzn2

secure_seq: use the 64 bits of the siphash for port offset

Out of scope - related to PowerPC 32-bit.

Duplicate of CVE-2022-32250

netfilter: nf_tables: disallow non-stateful expression in

xen/blkfront: fix leaking data in shared pages

net: Rename and export copy_skb_header

xen/netfront: fix leaking data in shared pages

xen/netfront: force data bouncing when backend is untrusted

xen/netfront: force data bouncing when backend is untrusted (adaptation)

xen/blkfront: force data bouncing when backend is untrusted

xen/blkfront: force data bouncing when backend is untrusted (adaptation)

Out of scope - ARM architecture.

net: rose: fix UAF bugs caused by timer handler

net: rose: fix UAF bugs caused by timer handler (adaptation)

fbcon: Disallow setting font bigger than screen size

xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in

x86: Clear .brk area at early boot

N/A

[PATCH v4 1/2] ath9k: fix use-after-free in ath9k_hif_usb_rx_cb

KVM: x86: Check lapic_in_kernel() before attempting to set a SynIC irq

KVM: x86: Avoid theoretical NULL pointer dereference in kvm_irq_delivery_to_apic_fast()

KVM: Add infrastructure and macro to mark VM as bugged

KVM: x86: Check lapic_in_kernel() before attempting to set a SynIC irq (adaptation)

UBUNTU: SAUCE: net_sched: cls_route: remove from list when handle is 0

Livepatching Retbleed may decrease the stability and performance of the kernel, while vulnerability has a medium security impact and only for a certain hardware environment.

Livepatching Retbleed may decrease the stability and performance of the kernel, while vulnerability has a medium security impact and only for a certain hardware environment.

netfilter: nf_queue: do not allow packet truncation below transport header offset

r8152: Rate limit overflow messages

nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level()

nilfs2: fix leak of nilfs_root in case of writer thread creation failure

nilfs2: fix leak of nilfs_root in case of writer thread creation failure

video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write

scsi: stex: Properly zero out the passthrough command structure

media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across

Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu

xen/netback: Ensure protocol headers don't fall in the non-linear area

Bluetooth: L2CAP: Fix u8 overflow

net: sched: disallow noqueue for qdisc classes

ipv6: raw: Deduct extension header length in rawv6_push_pending_frames

net: sched: atm: dont intepret cls results when asked to drop

HID: check empty report_list in hid_validate_values()

Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""

perf: Fix sys_perf_event_open() race against self

net/sched: cls_u32: fix netns refcount changes in u32_change()

tty: extract tty_flip_buffer_commit() from tty_flip_buffer_push()

tty: use new tty_insert_flip_string_and_push_buffer() in pty_write()

netfilter: nf_conntrack_irc: Fix forged IP logic

efi: capsule-loader: Fix use-after-free in efi_capsule_write

efi: capsule-loader: Fix use-after-free in efi_capsule_write (adaptation)

af_key: Do not call xfrm_probe_algs in parallel

net: mpls: fix stale pointer if allocation fails during device rename

Complex adaptation is required, mainline retired tcindex.

prlimit: do_prlimit needs to have a speculation check

scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress

USB: ene_usb6250: Allocate enough memory for full object

Fix double fget() in vhost_net_set_backend()

bluetooth: Perform careful capability checks in hci_sock_ioctl()

bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()

xfs: verify buffer contents when we skip log replay

net: sched: cbq: dont intepret cls results when asked to drop

net: qcom/emac: Fix use after free bug in emac_remove due to race condition

i2c: xgene-slimpro: Fix out-of-bounds bug in xgene_slimpro_i2c_xfer()

ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h

ext4: fix use-after-free in ext4_xattr_set_entry

net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg

netfilter: nf_tables: split set destruction in deactivate and destroy phase

netfilter: nft_hash: fix nft_hash_deactivate

netfilter: nf_tables: bogus EBUSY when deleting set after flush

netfilter: nf_tables: deactivate anonymous set from preparation phase

netfilter: nf_tables: split set destruction in deactivate and destroy phase (adaptation)

netfilter: nf_tables: bogus EBUSY when deleting set after flush (Revert)

netfilter: nf_tables: split set destruction in deactivate and destroy phase

netfilter: nf_tables: split set destruction in deactivate and destroy phase

net: tls: fix possible race condition between

ipvlan:Fix out-of-bounds caused by unclear skb->cb

ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum

Re: Possible deadlock detected in Linux 6.2.0 in

netfilter: nf_tables: do not allow RULE_ID to refer to another chain

netfilter: nf_tables: do not allow RULE_ID to refer to another chain

netfilter: nf_tables: do not allow RULE_ID to refer to another chain

netfilter: nf_tables: stricter validation of element data

btrfs: unset reloc control if transaction commit fails in prepare_to_relocate()

btrfs: unset reloc control if transaction commit fails in prepare_to_relocate()

netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE

netfilter: nf_tables: prevent OOB access in nft_byteorder_eval

net/sched: cls_u32: Fix reference counter leak leading to overflow

net/sched: sch_qfq: account for stab overhead in qfq_enqueue

net/sched: cls_fw: Fix improper refcount update leads to use-after-free

A low priority AMD Inception vulnerability that affects Zen3/Zen4 & relates to RetBleed fixes requiring microcode updates, we can't do much about it in KCare Infra.

gfs2: Don't deref jdesc in evict

This is a low priority CVE & the patch impacts many critical components of the networking subsystem & it requires multiple complex adaptations in those components to avoid losing existing connections on patch/unpatch.

net/sched: cls_route: No longer copy tcf_result on update to avoid

net/sched: cls_u32: No longer copy tcf_result on update to avoid

xfrm: add NULL check in xfrm_update_ae_params

af_unix: Fix null-ptr-deref in unix_stream_sendpage().

net/sched: sch_hfsc: Ensure inner classes have fsc curve

net: sched: sch_qfq: Fix UAF in qfq_dequeue()

net: sched: sch_qfq: Fix UAF in qfq_dequeue() (adaptation)

The patch removes functionality.

An introduction of required changes through KernelCare could cause unavoidable problems to applications which use netfilter functionality.

netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c

xen/events: replace evtchn_rwlock with RCU

xen/events: replace evtchn_rwlock with RCU (adaptation)

fs/jfs: Add a mutex named txEnd_lmLogClose_mutex to prevent a race condition between txEnd and lmLogClose functions

perf: Disallow mis-matched inherited group reads (adaptation)

perf: Disallow mis-matched inherited group reads (adaptation)

vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF

drm/qxl: fix UAF on handle creation

ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet

smb: client: fix OOB in smbCalcSize()

netfilter: nf_tables: Reject tables of unsupported family

tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux

perf: Fix perf_event_validate_size()

netfilter: nf_tables: reject QUEUE/DROP verdict parameters

net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv

dm: limit the number of targets and parameter size area

Complex adaptation is required, vendor retired ATA over Ethernet driver.

sched/membarrier: reduce the ability to hammer on

llc: call sock_orphan() at release time

aoe: fix the potential use-after-free problem in

EDAC/thunderx: Fix possible out-of-bounds string access

drm: Don't unref the same fb many times by mistake due to deadlock

calipso: fix memory leak in netlbl_calipso_add_pass()

netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()

xen-netback: don't produce zero-size SKB frags

netfilter: nftables: exthdr: fix 4-byte stack OOB write

sched/rt: pick_next_rt_entity(): check list_entry

x86/kvm: Disable kvmclock on all CPUs on shutdown

KVM: nVMX: add missing consistency checks for CR0 and CR4

x86/xen: Add xenpv_restore_regs_and_return_to_usermode()

N/A

N/A

Restrict access to pagemap/kpageflags/kpagecount

vmx_vcpu_run wrapper

x86/CPU/AMD: Do not leak quotient data after a division by 0

tcp/udp: Fix memory leak in ipv6_renew_options()

Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM

Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm