i2c: i801: Don't generate an interrupt on bus reset

media: dvbdev: Fix memory leak in dvb_media_device_free()

net: usb: fix memory leak in smsc75xx_bind

net: usb: fix possible use-after-free in

crypto: akcipher - default implementations for request callbacks

crypto: testmgr - split akcipher tests by a key type

crypto: akcipher - Disable signing and decryption

platform/x86: think-lmi: Fix reference leak

wifi: iwlwifi: fix a memory corruption

net/sched: act_ct: fix skb leak and crash on ooo frags

Out of scope as the patch is for s390 arch only, x86_64 is not affected

Out of scope as the patch is for powerpc arch only, x86_64 is not affected

Out of scope as the patch is for powerpc arch only, x86_64 is not affected

uio: Fix use-after-free in uio_open

i2c: i801: Fix block process call transactions

i2c: Fix a potential use after free

media: pvrusb2: fix use after free on context disconnection

md/raid5: fix atomicity violation in raid5_cache_count

CVE patch is for powerpc arch only

This CVE modifies the functions which won't be available or doesn't make sense to patch as they are used during bootup time or init. Therefore we cannot patch this CVE.

tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc

vt: fix memory overlapping when deleting chars in the buffer

usb: hub: Guard against accesses to uninitialized BOS descriptors

RDMA/siw: Fix connection failure handling

net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg

wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus()

wifi: rt2x00: restart beacon queue when hardware reset

RDMA/srpt: Do not register event handler until srpt device is fully setup

wifi: mt76: mt7921e: fix use-after-free in free_irq()

The given kernel version isn't vulnerable.

mtd: properly check all write ioctls for permissions

mtd: require write permissions for locking and badblock ioctls

WiFi - Complex adaptation required.

wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work

RDMA/qedr: Fix qedr_create_user_qp error flow

wifi: mac80211: fix race condition on enabling

do_sys_name_to_handle(): use kzalloc() to fix

usb: ulpi: Fix debugfs directory leak

USB: core: Add hub_get() and hub_put() routines

USB: core: Fix deadlock in port "disable" sysfs attribute

USB: core: Fix deadlock in

USB: core: Add hub_get() and hub_put() routines

fat: fix uninitialized field in nostale filehandles

fs: sysfs: Fix reference leak in sysfs_break_active_protection()

vhost: use kzalloc() instead of kmalloc() followed by memset()

x86/fpu: Stop relying on userspace for info to

net/smc: fix illegal rmb_desc access in SMC-D connection dum

netfilter: nf_tables: disallow anonymous set with timeout flag

The given kernel version isn't vulnerable (Netfilter).

hwmon: (coretemp) Fix out-of-bounds memory access

wifi: iwlwifi: mvm: fix a crash when we run out of stations

wifi: iwlwifi: fix double-free bug

USB: usb-storage: Prevent divide-by-0 error in

net:emac/emac-mac: Fix a use after free in

i2c: validate user data in compat ioctl

xhci: process isoc TD properly when there was a

xhci: process isoc TD properly when there was a transaction error mid TD kpatch

xhci: handle isoc Babble and Buffer Overrun events

net/mlx5e: Prevent deadlock while disabling aRFS

net/mlx5e: Prevent deadlock while disabling aRFS

wifi: iwlwifi: mvm: ensure offloading TID queue exists

wifi: brcm80211: handle pmk_op allocation failure

No sense in patching an early boot function; inventing a runtime-wise patch is not impossible but isn't worth the effort for 4.4 score CVE

net: add atomic_long_t to net_device_stats fields

net: bridge: use DEV_STATS_INC()

net: Fix unwanted sign extension in netdev_stats_to_stats64()

net: add atomic_long_t to net_device_stats fields

RDMA/srpt: Support specifying the srpt_service_guid

CVE patch is for s390 arch only

CVE patch is for powerpc arch only

CVE patch is for powerpc arch only

net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

crypto: pcrypt - Fix hungtask for PADATA_RESET

tipc: fix kernel warning when sending SYN message

perf/core: Bail out early if the request AUX area is out of bound

usb: config: fix iteration issue in 'usb_get_bos_descriptor()'

usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()

net/mlx5e: fix a potential double-free in fs_any_create_groups

can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds

EDAC/thunderx: Fix possible out-of-bounds string access

RDMA/mlx5: Fix fortify source warning while accessing Eth segment

x86: KVM: SVM: always update the x2avic msr interception

netfilter: Complex adaptation required.

mm/damon/vaddr-test: fix memory leak in

net/mlx5e: Fix mlx5e_priv_init() cleanup flow

platform/x86: dell-smbios-wmi: Fix oops on rmmod

net/mlx5: Properly link new fs rules into the tree

i40e: Do not use WQ_MEM_RECLAIM flag for workqueue

net: ena: Fix incorrect descriptor free behavior

tls: disable async encrypt/decrypt

net/bnx2x: Prevent access to a freed page in

Bluetooth: Reject connection with the device which

Bluetooth: hci_event: Fix coding style

Bluetooth: avoid memcmp() out of bounds warning

Bluetooth: hci_event: Ignore NULL link key

Bluetooth: hci_event: Fix using memcmp when

hwrng: core - Fix page fault dead lock on mmap-ed

mlxsw: spectrum_acl_tcam: Fix warning during rehash

ipc/mqueue.c: remove duplicated code

ipc/mqueue.c: update/document memory barriers

ipc/msg.c: update and document memory barriers

ipc/sem.c: document and update memory barriers

ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry

net: cdc_eem: fix tx fixup skb leak

udf: Fix NULL pointer dereference in udf_symlink function

net: qcom/emac: fix UAF in emac_remove

net: ti: fix UAF in tlan_remove_one

mISDN: fix possible use-after-free in HFC_cleanup()

mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq

can: peak_pci: peak_pci_remove(): fix UAF

ovl: fix leaked dentry

usbnet: sanity check for maxpacket

usbnet: fix error return code in usbnet_probe()

net/mlx5e: fix a double-free in arfs_create_groups

wifi: mac80211: check/clear fast rx for non-4addr

wifi: iwlwifi: dbg-tlv: ensure NUL termination

wifi: mac80211: fix potential sta-link leak

mlxsw: spectrum_acl_tcam: Fix memory leak when

mlxsw: spectrum_acl_tcam: Fix memory leak during

mlxsw: spectrum_acl_tcam: Fix possible

mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update

erspan: make sure erspan_base_hdr is present in

gro: fix ownership transfer

CVE patch is for arch/arm which is not supported.

drm/amdgpu: fix use-after-free bug

ppp_async: limit MRU to 64K

ipv6: sr: fix possible use-after-free and

Bluetooth: Avoid potential use-after-free in

net: ip_tunnel: prevent perpetual headroom growth

mptcp: fix data re-injection from stale subflow

x86/mm: Complex adaptation required to prevent BPF abuse.

crypto: qat - resolve race condition during AER

crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak

Squashfs: check the inode number is not the invalid

wifi: nl80211: reject iftype change with mesh ID

swap: fix do_swap_page() race with swapoff

mm/swap: fix race when skipping swapcache

x86 xen add xenpv restore regs and return to usermode

kpatch add alt asm definitions

kpatch add paravirt asm definitions