kernel-tools-debuginfo-4.19.90-2410.1.0.0298.oe2003sp40>    gB ;G|`u` y!$\Qd=b6/==o Cx~9\܌T2-t,5 ?;hRc')yWZnu`bV]QMh';ظ= t6.)p=0eeqri'j"DP\IJ9iT4w@/ ! )z#- 2Ԝ ,~aw>ۉl.$t=+ER٪ "75LyYϜ4;**<+ w};#˝% Om{;TseT ٚ4${HC6mNf1%W1u琺xj^{X5SwNƍ WXt]\CH_c2fee7ce3046147cbbf8a7343b50eda32945aafd9c82eeac5f7378f376ccd91ccbc32ffd5db9450166a85e81f15d941ca60f7d0a?6eV,>9P?@d! 9 d04: Oax~   T  QTd(8>9>:>FGH IdXxY\]^JbdefltuHv z<Ckernel-tools-debuginfo4.19.902410.1.0.0298.oe2003sp4Debug information for package kernel-toolsThis package provides debug information for package kernel-tools. Debug information is useful when developing applications that use this package or when debugging this package.g:dc-64g.compass-ciGPLv2http://openeuler.orgDevelopment/Debughttp://www.kernel.org/linuxx86_64 |mjc0x gP.AAA$$$$$$$$$$A$gAgAg>Jg>Kg>Kg>Jg>Kg>Jg>Kg>Kg>Jg>Kg>Kg>Jg>Kg>Kg>K224d900c21eee0a52d324b10185d98a5c8ea48fa21251d15387cd010ff388105b5360b5674da77e8ff5621f5759427960ac9b1daaff3d2658fe3dfe1c0f3089ee09d3c057ea55c2b7237ff22106565a0863c8cd3acad2fa91cae6837d2b6e30d2d4c4aa730414df4180dca3375fbde09cc5b8082a804da552fe985a641ed6b19eb2ce6e10416efbdf02dfb36788cb1f805f7016b3e5a7ad528870a6fa876761bafdc952b197bb7163f1230e24873f52d926f25a454ee5c8fec68f7ef12121c2edce2dd24bb213df4f604d23e6c9768eac928d9961cf2ae54866e249316c65c0531c4762140a085bfe586dd176e3cfa338262df5f22a317bddab633229b7868082892cb14671f35e57536b036a2d4273acd580d929818407814c63eb2579ff283b52a2a182be176e9e8b2a717c3e622250a9f5cea05ac02a925a1606ea2b4f14b03db70dbcfe5680ed88d4b0b6cae00a42c8b7f7398ecf3e82b0cb5e53bf0c3b307cab7941120e7cf31b98f4ffb9ce3ff8a6d00050f3900257a4bdefc3617588f8ef169a7203d7edf380fe44d94025fbebfca7fecc2a30b5bfd58cf3fc9b447f6rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootkernel-4.19.90-2410.1.0.0298.oe2003sp4.src.rpmkernel-tools-debuginfokernel-tools-debuginfo(x86-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.15.1gf@fX@fo@f4f@fͿfą@fJf@ff@f`f&@ff|fqvfifh<@f`S@fWfM@fDf:f(@ff-f @ee@eZeeeBeeee@eeee@exK@epb@ek@ee@ee@eae_>e]@e[J@e[J@eWUeWUeTeSa@eSa@eReReN@eLeJ&chenyi - 4.19.90-2410.1.0.0298chenyi - 4.19.90-2409.6.0.0297yushi - 4.19.90-2409.4.0.0296chenyi - 4.19.90-2409.4.0.0295chenyi - 4.19.90-2409.3.0.0294chenyi - 4.19.90-2409.1.0.0293chenyi - 4.19.90-2408.5.0.0292chenyi - 4.19.90-2408.4.0.0291chenyi - 4.19.90-2408.3.0.0290chenyi - 4.19.90-2408.2.0.0289chenyi - 4.19.90-2408.1.0.0288chenyi - 4.19.90-2407.5.0.0287chenyi - 4.19.90-2407.4.0.0286chenyi - 4.19.90-2407.3.0.0285chenyi - 4.19.90-2407.1.0.0284chenyi - 4.19.90-2406.4.0.0283chenyi - 4.19.90-2406.3.0.0282chenyi - 4.19.90-2406.2.0.0281chenyi - 4.19.90-2406.1.0.0280chenyi - 4.19.90-2406.1.0.0279chenyi - 4.19.90-2405.5.0.0278hongrongxuan - 4.19.90-2405.4.0.0277chenyi - 4.19.90-2405.3.0.0276chenyi - 4.19.90-2405.1.0.0275chenyi - 4.19.90-2404.3.0.0274chenyi - 4.19.90-2404.2.0.0273hongrongxuan - 4.19.90-2404.1.0.0272hongrongxuan - 4.19.90-2403.4.0.0271hongrongxuan - 4.19.90-2403.3.0.0270hongrongxuan - 4.19.90-2403.2.0.0269hongrongxuan - 4.19.90-2403.1.0.0268hongrongxuan - 4.19.90-2402.6.0.0267hongrongxuan - 4.19.90-2402.5.0.0266yangjunshuo - 4.19.90-2402.4.0.0265hongrongxuan - 4.19.90-2402.4.0.0264hongrongxuan - 4.19.90-2402.1.0.0263hongrongxuan - 4.19.90-2401.5.0.0262YunYi Yang - 4.19.90-2401.4.0.0261YunYi Yang - 4.19.90-2401.3.0.0260YunYi Yang - 4.19.90-2401.1.0.0259YunYi Yang - 4.19.90-2312.6.0.0258YunYi Yang - 4.19.90-2312.4.0.0257YunYi Yang - 4.19.90-2312.3.0.0256YunYi Yang - 4.19.90-2312.1.0.0255Zhang Mingqian - 4.19.90-2311.5.0.0254Yuan Zhang - 4.19.90-2311.5.0.0253Li Xiaodong - 4.19.90-2311.5.0.0252Zhou Kaiqi - 4.19.90-2311.4.0.0251Keyi Zhong - 4.19.90-2311.4.0.0250Luo Shengwei - 4.19.90-2311.4.0.0249YunYi Yang - 4.19.90-2311.3.0.0248Yu Liao - 4.19.90-2311.3.0.0247Zhou Kaiqi - 4.19.90-2311.3.0.0246Li Xiaodong - 4.19.90-2311.3.0.0245Luo Shengwei - 4.19.90-2311.3.0.0244YunYi Yang - 4.19.90-2311.2.0.0243Li Xiaodong - 4.19.90-2311.2.0.0242mingqian218472 - 4.19.90-2311.1.0.0241Yu Liao - 4.19.90-2311.1.0.0240hongrongxuan - 4.19.90-2311.1.0.0239Kunkun Jiang - 4.19.90-2311.1.0.0238YaQiang Chen - 4.19.90-2311.1.0.0237- !12007 Fix CVE-2024-44958 for 4.19 - !11785 perf/x86: Serialize set_attr_rdpmc() - sched/smt: Fix unbalance sched_smt_present dec/inc - sched/smt: Introduce sched_smt_present_inc/dec() helper - sched: Revert fix unbalance sched_smt_present dec/inc - !11918 dhugetlb: make spin_lock irq save - !11968 drm/amdgpu: fix mc_data out-of-bounds read warning - drm/amdgpu: fix mc_data out-of-bounds read warning - !11863 memcg_write_event_control(): fix a user-triggerable oops - !11921 hwmon: (lm95234) Fix underflows seen when writing limit attributes - !11924 nilfs2: protect references to superblock parameters exposed in sysfs - !11842 CVE-2024-46771 - nilfs2: protect references to superblock parameters exposed in sysfs - hwmon: (lm95234) Fix underflows seen when writing limit attributes - dhugetlb: make free_huge_page_to_dhugetlb_pool irq safe - dhugetlb: avoid lockdep warning with spin_lock_nested - dhugetlb: Use helper function to lock/unlock - !11789 ALSA: line6: Fix racy access to midibuf - !11905 scsi: aacraid: Fix double-free on probe failure - !11888 pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv - !11855 VMCI: Fix use-after-free when removing resource in vmci_resource_remove() - scsi: aacraid: Fix double-free on probe failure - !11877 usb: dwc3: st: fix probed platform device ref count on probe error path - !11878 PCI: Add missing bridge lock to pci_bus_lock() - !11861 hwmon: (w83627ehf) Fix underflows seen when writing limit attributes - !11803 CVE-2024-46781 - pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv - PCI: Add missing bridge lock to pci_bus_lock() - usb: dwc3: st: fix probed platform device ref count on probe error path - !11818 uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind - memcg_write_event_control(): fix a user-triggerable oops - hwmon: (w83627ehf) Fix underflows seen when writing limit attributes - !11703 binder: fix UAF caused by offsets overwrite - !11854 fix CVE-2024-46777 for 4.19 - VMCI: Fix use-after-free when removing resource in vmci_resource_remove() - udf: Avoid excessive partition lengths - udf: Define EFSCORRUPTED error code - !11809 apparmor: fix possible NULL pointer dereference - !11777 blktrace: fix blktrace is disabled when CONFIG_BLK_DEBUG_FS is disabled - can: bcm: Clear bo->bcm_proc_read after remove_proc_entry(). - can: bcm: Remove proc entry when dev is unregistered. - uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind - apparmor: fix possible NULL pointer dereference - nilfs2: fix missing cleanup on rollforward recovery error - nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput - ALSA: line6: Fix racy access to midibuf - perf/x86: Serialize set_attr_rdpmc() - blktrace: fix blktrace is disabled when CONFIG_BLK_DEBUG_FS is disabled - binder: fix UAF caused by offsets overwrite- !11816 v3 tools: fix implicit declaration of function __ALIGN_KERNEL - tools: fix implicit declaration of function __ALIGN_KERNEL - !11786 LTS patch backport - !11759 sch/netem: fix use after free in netem_dequeue - arm64: cpufeature: Fix the visibility of compat hwcaps - arm64: cpufeature: Force HWCAP to be based on the sysreg visible to user-space - irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1 - irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc - irqchip/mbigen: Fix mbigen node address layout - !11737 hwmon: (adc128d818) Fix underflows seen when writing limit attributes - !11692 fix CVE-2024-46723 - !11695 wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() - !11734 Input: MT - limit max slots - sch/netem: fix use after free in netem_dequeue - !11722 Squashfs: sanity check symbolic link size - !11697 Fix iBMA bug and change version - !11700 x86/mm: Fix pti_clone_pgtable() alignment assumption - hwmon: (adc128d818) Fix underflows seen when writing limit attributes - Input: MT - limit max slots - Squashfs: sanity check symbolic link size - x86/mm: Fix pti_clone_pgtable() alignment assumption - BMA: Fix edma driver initialization problem and change the version number. - wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() - !11671 v4 HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup - drm/amdgpu: fix ucode out-of-bounds read warning - HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup - !11645 block: backport debugfs patches - !11544 Fix CVE-2024-45025 - !11560 mm/ksm: fix possible UAF of stable_node - !11652 media: Revert "media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control()" - media: Revert "media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control()" - block: fix kabi broken in struct request_queue - block: protect blk_mq_debugfs_register/unregister_hctx() with 'debugfs_mutex' - block: shutdown blktrace in blk_release_queue() - block: remove per-disk debugfs files in blk_unregister_queue - block: serialize all debugfs operations using q->debugfs_mutex - blk-mq: Fix spurious debugfs directory creation during initialization - block: create the request_queue debugfs_dir on registration - blk-mq: don't create hctx debugfs dir until q->debugfs_dir is created - blk-mq: fix up placement of debugfs directory of queue files - blk-mq: no need to check return value of debugfs_create functions - blktrace: annotate required lock on do_blk_trace_setup() - blktrace: Avoid sparse warnings when assigning q->blk_trace - blktrace: break out of blktrace setup on concurrent calls - !11616 mmc: mmc_test: Fix NULL dereference on allocation failure - !11610 Input: uinput - reject requests with unreasonable number of slots - mmc: mmc_test: Fix NULL dereference on allocation failure - Input: uinput - reject requests with unreasonable number of slots - !11596 gtp: pull network headers in gtp_dev_xmit() - gtp: pull network headers in gtp_dev_xmit() - mm/ksm: fix possible UAF of stable_node - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE - s390/cio: rename bitmap_size() -> idset_bitmap_size() - bitmap: introduce generic optimized bitmap_size()- net/core: Replace driver version to be kernel version- !11557 xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration - !11520 ipv6: prevent UAF in ip6_send_skb() - !11532 v2 Fix CVE-2023-52915 - media: dvb-usb-v2: af9035: fix missing unlock - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer - !11525 v2 usb: gadget: core: Check for unset descriptor - usb: gadget: core: Check for unset descriptor - !11512 x86/mtrr: Check if fixed MTRRs exist before saving them - ipv6: prevent UAF in ip6_send_skb() - x86/mtrr: Check if fixed MTRRs exist before saving them- !11434 v3 cifs: Fix pages leak when cifs_writedata allocate fails in cifs_writedata_direct_alloc() - cifs: Fix pages leak when cifs_writedata allocate fails in cifs_writedata_direct_alloc() - !11418 md/raid5: avoid BUG_ON() while continue reshape after reassembling - !11426 nfc: pn533: Wait for out_urb's completion in pn533_usb_send_frame() - nfc: pn533: initialize struct pn533_out_arg properly - nfc: pn533: Wait for out_urb's completion in pn533_usb_send_frame() - !11404 usb: gadget: f_ncm: fix potential NULL ptr deref in ncm_bitrate() - !11406 net: hns3: do not allow call hns3_nic_net_open repeatedly - md/raid5: avoid BUG_ON() while continue reshape after reassembling - !11177 dma: fix call order in dmam_free_coherent - !11387 usb: gadget: rndis: add spinlock for rndis response list - !8301 tty: fix hang on tty device with no_room set - !7809 net-memcg: Fix scope of sockmem pressure indicators - net: hns3: do not allow call hns3_nic_net_open repeatedly - !11386 v5 support block hierarchy stats - usb: gadget: f_ncm: fix potential NULL ptr deref in ncm_bitrate() - !11349 jfs: Fix array-index-out-of-bounds in diFree - !11350 devres: Fix memory leakage caused by driver API devm_free_percpu() - !11378 drm/i915/gem: Fix Virtual Memory mapping boundaries calculation - !11370 nilfs2: handle inconsistent state in nilfs_btnode_create_block() - !11367 ibmvnic: free reset-work-item when flushing - !11388 dev/parport: fix the array out-of-bounds risk - dev/parport: fix the array out-of-bounds risk - usb: gadget: rndis: add spinlock for rndis response list - blk-io-hierarchy: support new stage for bio lifetime - blk-io-hierarchy: support new rq based stage rq_driver - blk-io-hierarchy: support new rq based stage requeue - blk-io-hierarchy: support new rq based stage hctx - blk-io-hierarchy: support new rq based stage kyber - blk-io-hierarchy: support new rq based stage bfq - blk-io-hierarchy: support new rq based stage mq-deadline - blk-io-hierarchy: support new rq based stage plug - blk-io-hierarchy: support new bio based stage gettag - blk-mq: remove blk_mq_put_ctx() - blk-io-hierarchy: support new bio based stage blk-wbt - blk-io-hierarchy: support new bio based stage blk-throtl - blk-io-hierarchy: support to recored the number of slow IO - block-io-hierarchy: core hierarchy iodump implementation - block-io-hierarchy: core hierarchy stats implementation - block: support to record when request is completed - blk-mq-debugfs: factor out a new helper to show allocated request - block: block: fix kabi broken for struct blk_mq_alloc_data - block: support to recored bio allocation task in request - block: fix kabi broken for struct request - block: support to recored bio allocation time in request - block: support to recored bio allocation task - block: support to recored bio allocation time - block: fix kabi broken in struct blk_plug - block: fix that blk_time_get_ns() doesn't update time after schedule - block: limit block time caching to in_task() context - block: update cached timestamp post schedule/preemption - block: cache current nsec time in struct blk_plug - block: add blk_time_get_ns() and blk_time_get() helpers - blk-mq: export blk-mq-debugfs apis - drm/i915/gem: Fix Virtual Memory mapping boundaries calculation - nilfs2: handle inconsistent state in nilfs_btnode_create_block() - ibmvnic: free reset-work-item when flushing - devres: Fix memory leakage caused by driver API devm_free_percpu() - jfs: Fix array-index-out-of-bounds in diFree - dma: fix call order in dmam_free_coherent - tty: fix hang on tty device with no_room set - net-memcg: Fix scope of sockmem pressure indicators- !11383 perf/core: Fix missing wakeup when waiting for context reference - !11384 fs/proc: fix softlockup in __read_vmcore - !11351 regulator: da9211: Use irq handler when ready - !11364 hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode() - fs/proc: fix softlockup in __read_vmcore - perf/core: Fix missing wakeup when waiting for context reference - !11242 CVE-2024-43892 - !11301 ext4: remove the redundant folio_wait_stable() - hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode() - !11333 jbd2: avoid mount failed when commit block is partial submitted - !11345 netfilter: ctnetlink: use helper function to calculate expect ID - regulator: da9211: Use irq handler when ready - !11220 io_uring: add a schedule point in io_add_buffers() - netfilter: ctnetlink: use helper function to calculate expect ID - jbd2: avoid mount failed when commit block is partial submitted - !11290 Add exception protection processing for vd in axi_chan_handle_err function - !11258 net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe() - !11215 Fix CVE-2024-40901 - !11186 Backport bugfix for AMD SMN - !11265 mtd: rawnand: hynix: fixed typo - !11264 media: xc2028: avoid use-after-free in load_firmware_cb() - !11234 efi: fix NULL-deref in init error path - ext4: remove the redundant folio_wait_stable() - !11266 serial: core: check uartclk for zero to avoid divide by zero - Add exception protection processing for vd in axi_chan_handle_err function - !11216 scsi: qla2xxx: validate nvme_local_port correctly - !11254 mm: avoid overflows in dirty throttling logic - serial: core: check uartclk for zero to avoid divide by zero - !11189 tcp: fix race in tcp_v6_syn_recv_sock() - mtd: rawnand: hynix: fixed typo - media: xc2028: avoid use-after-free in load_firmware_cb() - !11154 xen/netfront: destroy queues before real_num_tx_queues is zeroed - !11259 ACPI: processor_idle: Fix invalid comparison with insertion sort for latency - !11260 ACPI: EC: Abort address space access upon error - !11261 ACPI: EC: Avoid returning AE_OK on errors in address space handler - !11114 sysctl: always initialize i_uid/i_gid - !11167 f2fs: let's avoid panic if extent_tree is not created - ACPI: EC: Avoid returning AE_OK on errors in address space handler - ACPI: EC: Abort address space access upon error - ACPI: processor_idle: Fix invalid comparison with insertion sort for latency - net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe() - mm: avoid overflows in dirty throttling logic - !11164 usb: vhci-hcd: Do not drop references before new references are gained - !11173 tracing: Fix overflow in get_free_elt() - memcg: protect concurrent access to mem_cgroup_idr - efi: fix NULL-deref in init error path - !11185 kobject_uevent: Fix OOB access within zap_modalias_env() - !11178 irqchip/alpine-msi: Fix off-by-one in allocation error path - io_uring: add a schedule point in io_add_buffers() - scsi: qla2xxx: validate nvme_local_port correctly - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory - scsi: mpt3sas: Gracefully handle online firmware update - scsi: mpt3sas: Add ioc_ logging macros - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() - !11193 net/ipv6: Fix the RT cache flush via sysctl using a previous delay - !11209 LTS patches round - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open() - net: tcp better handling of reordering then loss cases - tcp: tcp_mark_head_lost is only valid for sack-tcp - tcp: add ece_ack flag to reno sack functions - net/ipv6: Fix the RT cache flush via sysctl using a previous delay - tcp: fix race in tcp_v6_syn_recv_sock() - x86/amd_nb: Check for invalid SMN reads - PCI: Add PCI_ERROR_RESPONSE and related definitions - kobject_uevent: Fix OOB access within zap_modalias_env() - irqchip/alpine-msi: Fix off-by-one in allocation error path - tracing: Fix overflow in get_free_elt() - f2fs: let's avoid panic if extent_tree is not created - usb: vhci-hcd: Do not drop references before new references are gained - xen/netfront: destroy queues before real_num_tx_queues is zeroed - sysctl: always initialize i_uid/i_gid- !11130 iio: adc: men_z188_adc: Fix a resource leak in an error handling path - !11132 KVM: x86/mmu: make apf token non-zero to fix bug - !11192 af_packet: do not call packet_read_pending() from tpacket_destruct_skb() - af_packet: do not call packet_read_pending() from tpacket_destruct_skb() - !11150 protect the fetch of ->fd[fd - !11117 net/iucv: fix use after free in iucv_sock_close() - !11122 fix CVE-2023-52893 - !11089 f2fs: fix to don't dirty inode for readonly filesystem - !11078 nilfs2: fix general protection fault in nilfs_btree_insert() - !11047 filelock: Correct the filelock owner in fcntl_setlk/fcntl_setlk64 - protect the fetch of ->fd[fd] in do_dup2() from mispredictions - !11095 exec: Fix ToCToU between perm check and set-uid/gid usage - KVM: x86/mmu: make apf token non-zero to fix bug - iio: adc: men_z188_adc: Fix a resource leak in an error handling path - !11121 scsi: qla2xxx: During vport delete send async logout explicitly - !11113 mISDN: Fix a use after free in hfcmulti_tx() - gsmi: fix null-deref in gsmi_get_variable - scsi: qla2xxx: During vport delete send async logout explicitly - net/iucv: fix use after free in iucv_sock_close() - !11074 wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() - mISDN: Fix a use after free in hfcmulti_tx() - !11072 drm/virtio: Fix GEM handle creation UAF - exec: Fix ToCToU between perm check and set-uid/gid usage - !11086 thermal: int340x: fix memory leak in int3400_notify() - f2fs: fix to don't dirty inode for readonly filesystem - thermal: int340x: fix memory leak in int3400_notify() - !11061 Fix CVE-2023-52898 - nilfs2: fix general protection fault in nilfs_btree_insert() - !11068 Fix CVE-2024-39501 - wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() - drm/virtio: Fix GEM handle creation UAF - !11060 parisc: Fix data TLB miss in sba_unmap_sg - !11065 i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr - !11062 ocfs2: add bounds checking to ocfs2_check_dir_entry() - driver core: Fix uevent_show() vs driver detach race - selftests: forwarding: devlink_lib: Wait for udev events after reloading - drivers: core: synchronize really_probe() and dev_uevent() - !10992 media: venus: fix use after free in vdec_close - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr - ocfs2: add bounds checking to ocfs2_check_dir_entry() - !11001 tipc: Return non-zero value from tipc_udp_addr2str() on error - !10987 RDMA/iwcm: Fix a use-after-free related to destroying CM IDs - xhci: Fix null pointer dereference when host dies - xhci: avoid race between disable slot command and host runtime suspend - parisc: Fix data TLB miss in sba_unmap_sg - filelock: Correct the filelock owner in fcntl_setlk/fcntl_setlk64 - !11037 s390/sclp: Fix sclp_init() cleanup on failure - !11021 net: usb: qmi_wwan: fix memory leak for not ip packets - s390/sclp: Fix sclp_init() cleanup on failure - net: usb: qmi_wwan: fix memory leak for not ip packets - !10966 perf: Optimize perf_pmu_migrate_context() - tipc: Return non-zero value from tipc_udp_addr2str() on error - media: venus: fix use after free in vdec_close - RDMA/iwcm: Fix a use-after-free related to destroying CM IDs - perf: Optimize perf_pmu_migrate_context()- !10978 CVE-2024-42304 - !10946 drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes - !10957 bna: adjust 'name' buf size of bna_tcb and bna_ccb structures - ext4: make sure the first directory block is not a hole - ext4: check dot and dotdot of dx_root before making dir indexed - !10954 leds: trigger: Unregister sysfs attributes before calling deactivate() - bna: adjust 'name' buf size of bna_tcb and bna_ccb structures - !10930 libceph: fix race between delayed_work() and ceph_monc_stop() - leds: trigger: Unregister sysfs attributes before calling deactivate() - drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes - libceph: fix race between delayed_work() and ceph_monc_stop() - !10841 ALSA: gus: fix null pointer dereference on pointer block - !10913 sched/cputime: Fix mul_u64_u64_div_u64() precision for cputime - !10915 usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() - sched/cputime: Fix mul_u64_u64_div_u64() precision for cputime - !10894 v2 netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers - !10892 crypto: aead,cipher - zeroize key buffer after use - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers - crypto: aead,cipher - zeroize key buffer after use - ALSA: gus: fix null pointer dereference on pointer block- !10895 drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep - !10897 v2 orangefs: fix out-of-bounds fsid access - !10858 v4 powerpc/pseries: Whitelist dtl slub object for copying to userspace - orangefs: fix out-of-bounds fsid access - drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep - !10891 CVE-2024-42105 - nilfs2: fix inode number range checks - !10871 USB: serial: mos7840: fix crash on resume - !10643 USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor - USB: serial: mos7840: fix crash on resume - !10865 Revert "NFS: Don't interrupt file writeout due to fatal errors" - !10825 Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" - Revert "NFS: Don't interrupt file writeout due to fatal errors" - !10730 filelock: Remove locks reliably when fcntl/close race is detected - powerpc/pseries: Whitelist dtl slub object for copying to userspace - !10802 media: dvb-frontends: tda10048: Fix integer overflow - !10703 x86: stop playing stack games in profile_pc() - !10838 bnx2x: Fix multiple UBSAN array-index-out-of-bounds - bnx2x: Fix multiple UBSAN array-index-out-of-bounds - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" - !10806 tcp_metrics: validate source addr length - !10803 s390/pkey: Wipe sensitive data on failure - !10786 CVE-2024-41034 - tcp_metrics: validate source addr length - s390/pkey: Wipe sensitive data on failure - !10700 ethernet: Fix error handling in xemaclite_of_probe - !10777 Fix CVE-2024-42160 - media: dvb-frontends: tda10048: Fix integer overflow - !10532 ftruncate: pass a signed offset - !10623 ata: libata-core: Fix double free on error - !10664 v2 ASoC: fsl-asoc-card: set priv->pdev before using it - nilfs2: fix kernel bug on rename operation of broken directory - nilfs2: return the mapped address from nilfs_get_page() - nilfs2: Remove check for PageError - f2fs: Add inline to f2fs_build_fault_attr() stub - f2fs: check validation of fault attrs in f2fs_build_fault_attr() - filelock: Remove locks reliably when fcntl/close race is detected - x86: stop playing stack games in profile_pc() - ethernet: Fix error handling in xemaclite_of_probe - ASoC: fsl-asoc-card: set priv->pdev before using it - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor - ata: libata-core: Fix double free on error - ftruncate: pass a signed offset- !10629 v2 hfsplus: fix uninit-value in copy_name - !10723 net/iucv: Avoid explicit cpumask var allocation on stack - !10646 net: dsa: mv88e6xxx: Correct check for empty list - !10609 wifi: cfg80211: wext: add extra SIOCSIWSCAN data check - !10608 CVE-2024-41044 - net/iucv: Avoid explicit cpumask var allocation on stack - !10693 drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes - !10571 ila: block BH in ila_output() - !10593 fix CVE-2024-41046 - !10521 xfs: add bounds checking to xlog_recover_process_data - !10597 drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes - !10562 nilfs2: add missing check for inode numbers on directory entries - !10706 jfs: don't walk off the end of ealist - !10699 drm/amd/display: Skip finding free audio for unknown engine_id - !10672 inet_diag: Initialize pad field in struct inet_diag_req_v2 - !10684 ocfs2: fix DIO failure due to insufficient transaction credits - !10565 gpio: davinci: Validate the obtained number of IRQs - !10389 pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER - jfs: don't walk off the end of ealist - drm/amd/display: Skip finding free audio for unknown engine_id - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes - ocfs2: fix DIO failure due to insufficient transaction credits - inet_diag: Initialize pad field in struct inet_diag_req_v2 - !10641 usb: atm: cxacru: fix endpoint checking in cxacru_bind() - !10601 IB/core: Implement a limit on UMAD receive List - net: dsa: mv88e6xxx: Correct check for empty list - usb: atm: cxacru: fix endpoint checking in cxacru_bind() - hfsplus: fix uninit-value in copy_name - wifi: cfg80211: wext: add extra SIOCSIWSCAN data check - ppp: reject claimed-as-LCP but actually malformed packets - ppp: ensure minimum packet size in ppp_write() - IB/core: Implement a limit on UMAD receive List - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes - net: ethernet: lantiq_etop: fix double free in detach - net: lantiq_etop: add blank line after declaration - !10320 thermal: Fix NULL pointer dereferences in of_thermal_ functions - !10529 Bluetooth: hci_core: cancel all works upon hci_unregister_dev() - ila: block BH in ila_output() - gpio: davinci: Validate the obtained number of IRQs - nilfs2: add missing check for inode numbers on directory entries - !10471 ALSA: emux: improve patch ioctl data validation - !10479 jffs2: Fix potential illegal address access in jffs2_free_inode - Bluetooth: hci_core: cancel all works upon hci_unregister_dev() - xfs: add bounds checking to xlog_recover_process_data - !10386 filelock: Fix fcntl/close race recovery compat path - !10485 fix CVE-2024-42086 - !10492 drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc - !10400 Fix CVE-2024-41069 - !10270 HID: core: remove unnecessary WARN_ON() in implement() - !10472 v2 xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() - !10359 v2 PCI/ROM: Fix PCI ROM header check bug - drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc - iio: chemical: bme680: Fix overflows in compensate() functions - jffs2: Fix potential illegal address access in jffs2_free_inode - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() - ALSA: emux: improve patch ioctl data validation - !10341 net/sched: initialize noop_qdisc owner - ASoC: topology: Fix route memory corruption - ASoC: topology: Fix references to freed memory - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER - filelock: Fix fcntl/close race recovery compat path - PCI/ROM: Fix PCI ROM header check bug - net/sched: initialize noop_qdisc owner - thermal: Fix NULL pointer dereferences in of_thermal_ functions - HID: core: remove unnecessary WARN_ON() in implement()- !10327 NFC: port100: fix use-after-free in port100_send_complete - !10325 kobject: Fix global-out-of-bounds in kobject_action_type() - !10337 drm/radeon: fix UBSAN warning in kv_dpm.c - !10368 v2 jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error - jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error - !10227 MIPS: smp: fill in sibling and core maps earlier - drm/radeon: fix UBSAN warning in kv_dpm.c - !10324 BMA: Fix iBMA bug and change - NFC: port100: fix use-after-free in port100_send_complete - kobject: Fix global-out-of-bounds in kobject_action_type() - !10315 jfs: xattr: fix buffer overflow for invalid xattr - BMA/cdev_veth_drv: Fix softlockup problem - BMA/kbox_drv: Change the version number. - BMA/veth_drv: Fix soft interrupt loops and change the version number - BMA/cdev_drv: Change the version number. - BMA/edma_drv: Fix DMA reset problem and change the version number. - !10173 netrom: Fix a memory leak in nr_heartbeat_expiry() - !10249 fbdev: savage: Handle err return when savagefb_check_var failed - !10306 mISDN: Fix memory leak in dsp_pipeline_build() - jfs: xattr: fix buffer overflow for invalid xattr - !10198 scsi: qedi: Fix crash while reading debugfs attribute - !10310 batman-adv: bypass empty buckets in batadv_purge_orig_ref() - !10307 wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects - !10296 Backport dvb-usb bugfix - batman-adv: bypass empty buckets in batadv_purge_orig_ref() - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects - mISDN: Fix memory leak in dsp_pipeline_build() - media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() - USB: move snd_usb_pipe_sanity_check into the USB core - fbdev: savage: Handle err return when savagefb_check_var failed - MIPS: smp: fill in sibling and core maps earlier - scsi: qedi: Fix crash while reading debugfs attribute - netrom: Fix a memory leak in nr_heartbeat_expiry()- !10125 nvme-rdma: fix possible use-after-free in transport error_recovery work - !10112 ftrace: Fix use-after-free for dynamic ftrace_ops - !10276 net: ieee802154: at86rf230: Stop leaking skb's - net: ieee802154: at86rf230: Stop leaking skb's - !9917 powerpc/pseries: Enforce hcall result buffer validity and size - !10240 CVE-2024-41007 - !10251 sctp: fix kernel-infoleak for SCTP sockets - !10241 USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages - sctp: fix kernel-infoleak for SCTP sockets - !10229 staging: gdm724x: fix use after free in gdm_lte_rx() - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages - tcp: avoid too many retransmit packets - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out() - net: tcp: fix unexcepted socket die when snd_wnd is 0 - tcp: refactor tcp_retransmit_timer() - tcp: fix incorrect undo caused by DSACK of TLP retransmit - staging: gdm724x: fix use after free in gdm_lte_rx() - !10137 NFSD: Fix ia_size underflow - !10183 v3 ima: Fix use-after-free on a dentry's dname.name - !10121 usb: f_fs: Fix use-after-free for epfile - !10016 drm/exynos/vidi: fix memory leak in .get_modes() - !10211 fix CVE-2022-48865 - !10206 gianfar: ethtool: Fix refcount leak in gfar_get_ts_info - tipc: fix kernel panic when enabling bearer - tipc: fix NULL pointer dereference in tipc_disc_rcv() - gianfar: ethtool: Fix refcount leak in gfar_get_ts_info - !10186 vsock: remove vsock from connected table when connect is interrupted by a signal - !10190 Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj - Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj - vsock: remove vsock from connected table when connect is interrupted by a signal - !10141 vt_ioctl: fix array_index_nospec in vt_setactivate - ima: Fix use-after-free on a dentry's dname.name - !10152 wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() - !10026 liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet - !10147 CVE-2022-48836 - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() - Input: aiptek - properly check endpoint type - Input: aiptek - fix endpoint sanity check - vt_ioctl: fix array_index_nospec in vt_setactivate - !10095 CVE-2024-40968 - !10130 wifi: iwlwifi: mvm: don't read past the mfuart notifcation - NFSD: Fix ia_size underflow - !10123 CVE-2022-48838 - !10122 wifi: iwlwifi: mvm: check n_ssids before accessing the ssids - !10081 drm/amdgpu: fix UBSAN warning in kv_dpm.c - wifi: iwlwifi: mvm: don't read past the mfuart notifcation - !10092 usb: host: ohci-tmio: check return value after calling platform_get_resource() - nvme-rdma: fix possible use-after-free in transport error_recovery work - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids - usb: f_fs: Fix use-after-free for epfile - !10094 net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() - ftrace: Fix use-after-free for dynamic ftrace_ops - !10054 vmci: prevent speculation leaks by sanitizing event in event_deliver() - MIPS: Octeon: Add PCIe link status check - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() - usb: host: ohci-tmio: check return value after calling platform_get_resource() - !10033 ipv6: prevent possible NULL dereference in rt6_probe() - drm/amdgpu: fix UBSAN warning in kv_dpm.c - !9996 netpoll: Fix race condition in netpoll_owner_active - !9948 ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." - vmci: prevent speculation leaks by sanitizing event in event_deliver() - ipv6: prevent possible NULL dereference in rt6_probe() - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet - drm/exynos/vidi: fix memory leak in .get_modes() - netpoll: Fix race condition in netpoll_owner_active - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." - powerpc/pseries: Enforce hcall result buffer validity and size- !9925 ocfs2: fix races between hole punching and AIO+DIO - !9874 crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak - !9830 mmc: davinci: Don't strip remove function when driver is builtin - !9870 cifs: Fix deadlock in cifs_writepages during reconnect - !9895 bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() - ocfs2: fix races between hole punching and AIO+DIO - !9891 ipv6: sr: fix memleak in seg6_hmac_init_algo - !9856 btrfs: fix memory ordering between normal and ordered work functions - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() - ipv6: sr: fix memleak in seg6_hmac_init_algo - !9492 netlabel: fix out-of-bounds memory accesses - !9868 usb: musb: tusb6010: check return value after calling platform_get_resource() - crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak - cifs: Fix deadlock in cifs_writepages during reconnect - usb: musb: tusb6010: check return value after calling platform_get_resource() - !9858 khugepaged: fix null-pointer dereference due to race - !9819 kdb: Fix buffer overflow during tab-complete - khugepaged: fix null-pointer dereference due to race - btrfs: fix memory ordering between normal and ordered work functions - !9842 net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove - net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove - mmc: davinci: Don't strip remove function when driver is builtin - kdb: Fix buffer overflow during tab-complete - netlabel: fix out-of-bounds memory accesses- !9803 v2 x86/ftrace: Disable lockdep check when execute ftrace_int3_handler() - x86/ftrace: Disable lockdep check when execute ftrace_int3_handler() - !9797 sch_cake: do not call cake_destroy() from cake_init() - sch_cake: do not call cake_destroy() from cake_init() - !9786 drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() - drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() - !9777 CVE-2024-23848 - media: cec: cec-api: add locking in cec_release() - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh - !9765 i40e: Fix queues reservation for XDP - !9760 CVE-2024-26816 - !9754 net: openvswitch: fix overwriting ct original tuple for ICMPv6 - !9367 v2 net: qcom/emac: fix UAF in emac_remove - !9512 drm: vc4: Fix possible null pointer dereference - !9755 wifi: ar5523: enable proper endpoint verification - i40e: Fix queues reservation for XDP - !9744 Fix CVE-2024-36949 - !9741 scsi: qedf: Ensure the copied buf is NUL terminated - !9727 net: amd-xgbe: Fix skb data length underflow - x86/boot: Ignore relocations in .notes sections in walk_relocs() too - x86, relocs: Ignore relocations in .notes section - !9743 USB: core: Fix hang in usb_kill_urb by adding memory barriers - wifi: ar5523: enable proper endpoint verification - net: openvswitch: fix overwriting ct original tuple for ICMPv6 - !9674 ax25: Fix reference count leak issue of net_device - !9729 seg6: fix the iif in the IPv6 socket control block - !9725 v2 net: Fix CVE-2022-48757 - !9737 net/9p: fix uninit-value in p9_client_rpc() - amd/amdkfd: sync all devices to wait all processes being evicted - drm/amdkfd: Rework kfd_locked handling - USB: core: Fix hang in usb_kill_urb by adding memory barriers - scsi: qedf: Ensure the copied buf is NUL terminated - net/9p: fix uninit-value in p9_client_rpc() - !9710 CVE-2022-48738 - !9568 media: mxl111sf: change mutex_init() location - !9570 net: ieee802154: ca8210: Stop leaking skb's - seg6: fix the iif in the IPv6 socket control block - !9700 v2 crypto: bcm - Fix pointer arithmetic - !9684 greybus: lights: check return of get_channel_from_mode - net: amd-xgbe: Fix skb data length underflow - !9666 ftrace: Fix rcu warn in ftrace_location() - net: fix kabi breakage in struct packet_type - net: fix information leakage in /proc/net/ptype - !9724 Fix CVE-2024-35915 - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work() - nfc: nci: Fix uninit-value in nci_rx_work - nfc: nci: Fix kcov check in nci_rx_work() - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet - !9658 KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak - !9698 Fix CVE-2021-47270 - !9699 dma-buf/sw-sync: don't enable IRQ from sync_print_obj() - !9550 scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() - !9707 nilfs2: fix use-after-free of timer for log writer thread - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() - nilfs2: fix use-after-free of timer for log writer thread - !9655 nfc: fix segfault in nfc_genl_dump_devices_done - !9654 mac80211: validate extended element ID is present - !9653 ecryptfs: Fix buffer size for tag 66 packet - !9652 ALSA: timer: Set lower bound of start tick time - !9697 v3 Fix CVE-2024-38567 - !9633 CVE-2024-38582 - !9692 netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu() - crypto: bcm - Fix pointer arithmetic - dma-buf/sw-sync: don't enable IRQ from sync_print_obj() - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS - usb: fix various gadgets null ptr deref on 10gbps cabling. - wifi: carl9170: add a proper sanity check for endpoints - USB: core: Add routines for endpoint checks in old drivers - !9597 ASoC: max9759: fix underflow in speaker_gain_control_put() - netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu() - !9626 fix uaf when proc_cpuset_show - !9660 nilfs2: fix potential kernel bug due to lack of writeback flag waiting - greybus: lights: check return of get_channel_from_mode - ax25: Fix reference count leak issue of net_device - ftrace: Fix rcu warn in ftrace_location() - !9553 CVE-2024-37356 - nilfs2: fix potential kernel bug due to lack of writeback flag waiting - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak - nfc: fix segfault in nfc_genl_dump_devices_done - mac80211: validate extended element ID is present - ecryptfs: Fix buffer size for tag 66 packet - ALSA: timer: Set lower bound of start tick time - nilfs2: fix potential hang in nilfs_detach_log_writer() - nilfs2: fix unexpected freezing of nilfs_segctor_sync() - cgroup: fix uaf when proc_cpuset_show - ASoC: max9759: fix underflow in speaker_gain_control_put() - net: ieee802154: ca8210: Stop leaking skb's - media: mxl111sf: change mutex_init() location - tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). - params: lift param_set_uint_minmax to common code - scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() - drm: vc4: Fix possible null pointer dereference - net: qcom/emac: fix UAF in emac_remove- !9629 stm class: Fix a double free in stm_register_device() - !9646 phonet: fix rtm_phonet_notify() skb allocation - !9628 m68k: Fix spinlock race in kernel thread creation - !9623 v2 net/nfc/rawsock.c: fix a permission check bug - !9648 backport two patches from 5.10 to fix some bugs for GuestOS - !9617 mac80211: track only QoS data frames for admission control - !9637 ipv6: sr: fix invalid unregister error path - !9607 enic: Validate length of nl attributes in enic_set_vf_port - !9606 drm/nouveau: fix off by one in BIOS boundary checking - !9605 scsi: bfa: Ensure the copied buf is NUL terminated - irqchip: gic-v3: Collection table support muti pages - scsi: virtio_scsi: limit number of hw queues by nr_cpu_ids - phonet: fix rtm_phonet_notify() skb allocation - ipv6: sr: fix invalid unregister error path - stm class: Fix a double free in stm_register_device() - m68k: Fix spinlock race in kernel thread creation - !9076 RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests - net/nfc/rawsock.c: fix a permission check bug - mac80211: track only QoS data frames for admission control - enic: Validate length of nl attributes in enic_set_vf_port - drm/nouveau: fix off by one in BIOS boundary checking - !9600 CVE-2024-38597 - scsi: bfa: Ensure the copied buf is NUL terminated - !9409 drm/mediatek: Add 0 size check to mtk_drm_gem_obj - !9452 jffs2: prevent xattr node from overflowing the eraseblock - eth: sungem: remove .ndo_poll_controller to avoid deadlocks - net: fec: remove .ndo_poll_controller to avoid deadlocks - !8163 v2 mmc: sdio: fix possible resource leaks in some error paths - !9535 igbvf: fix double free in `igbvf_probe` - !9590 s390/ap: Fix crash in AP internal function modify_bitmap() - !9584 ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound - !9537 virtio: delete vq in vp_find_vqs_msix() when request_irq() fails - !9585 net/mlx5e: Avoid field-overflowing memcpy() - s390/ap: Fix crash in AP internal function modify_bitmap() - net/mlx5e: Avoid field-overflowing memcpy() - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound - !9534 rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev - !9419 mm/migrate: set swap entry values of THP tail pages properly. - !9560 net: systemport: Add global locking for descriptor lifecycle - !9526 media: lgdt3306a: Add a check against null-pointer-def - !9539 ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() - net: systemport: Add global locking for descriptor lifecycle - !9340 serial: max3100: Lock port->lock when calling uart_handle_cts_change() - !9330 ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() - !9382 serial: max3100: Update uart_driver_registered on driver removal - !9503 v2 watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger - !9464 quota: Fix rcu annotations of inode dquot pointers - !9530 v2 Backport LTS patches - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails - !9435 fix CVE-2024-38621 - igbvf: fix double free in `igbvf_probe` - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev - !9381 vfio/pci: fix potential memory leak in vfio_intx_enable() - !9497 netrom: fix possible dead-lock in nr_rt_ioctl() - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map() - pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map - media: lgdt3306a: Add a check against null-pointer-def - !9505 CVE-2024-38587 - !9473 um: Add winch to winch_handlers before registering winch IRQ - !9407 drm/arm/malidp: fix a possible null pointer dereference - !9400 Fix CVE-2024-31076 - speakup: Fix sizeof() vs ARRAY_SIZE() bug - !9439 CVE-2022-48715 - !9133 net: ethernet: fix potential use-after-free in ec_bhf_remove - watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger - netrom: fix possible dead-lock in nr_rt_ioctl() - !9265 ring-buffer: Fix a race between readers and resize checks - !9390 NFS: Fix an off by one in root_nfs_cat() - um: Add winch to winch_handlers before registering winch IRQ - quota: Fix rcu annotations of inode dquot pointers - fs/quota: erase unused but set variable warning - jffs2: prevent xattr node from overflowing the eraseblock - scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe - media: stk1160: fix bounds checking in stk1160_copy_video() - mm/migrate: set swap entry values of THP tail pages properly. - drm/mediatek: Add 0 size check to mtk_drm_gem_obj - drm/arm/malidp: fix a possible null pointer dereference - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline - NFS: Fix an off by one in root_nfs_cat() - serial: max3100: Update uart_driver_registered on driver removal - vfio/pci: fix potential memory leak in vfio_intx_enable() - serial: max3100: Lock port->lock when calling uart_handle_cts_change() - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() - ring-buffer: Fix a race between readers and resize checks - net: ethernet: fix potential use-after-free in ec_bhf_remove - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests - mmc: sdio: fix possible resource leaks in some error paths- !9471 CVE-2021-47434 - xhci: Fix commad ring abort, write all 64 bits to CRCR register. - xhci: Fix command ring pointer corruption while aborting a command - !8935 wifi: nl80211: don't free NULL coalescing rule - !9444 CVE-2022-48737 - !8493 rpmsg: virtio: Free driver_override when rpmsg_remove() - !8473 scsi: mpt3sas: Fix kernel panic during drive powercycle test - ASoC: ops: Fix bounds check for _sx controls - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() - !9322 drm/amd/display: Fix potential index out of bounds in color transformation function - !9366 macintosh/via-macii: Fix "BUG: sleeping function called from invalid context" - !9392 drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable - !9232 batman-adv: Avoid WARN_ON timing related checks - !9351 Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." - !9393 net: lts v4.311 backport - !9286 mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations - !9206 v2 sched: smart_grid: fix potential NULL pointer dereference - !9314 spi: Fix deadlock when adding SPI controllers on SPI buses - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr() - ipv6: fib6_rules: flush route cache when rule is changed - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable - !8360 v2 loop: use lo->lo_disk for kobject_uevent - !9343 firmware: arm_scpi: Fix string overflow in SCPI genpd driver - !9326 af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg - macintosh/via-macii: Fix "BUG: sleeping function called from invalid context" - !9285 of: module: add buffer overflow check in of_modalias() - !9316 CVE-2022-48755 - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." - !9344 round lts patches - !8769 atl1c: Work around the DMA RX overflow issue - !9292 net: bridge: xmit: make sure we have at least eth header len bytes - net: bridge: fix corrupted ethernet header on multicast-to-unicast - net: bridge: fix multicast-to-unicast with fraglist GSO - net: mark racy access on sk->sk_rcvbuf - net l2tp: drop flow hash on forward - firmware: arm_scpi: Fix string overflow in SCPI genpd driver - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg - !9324 v2 Linux 4.19.312-313 LTS patches - vxlan: Fix regression when dropping packets due to invalid src addresses - udp: preserve the connected status if only UDP cmsg - vxlan: drop packets from invalid src-address - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int - drm/amd/display: Fix potential index out of bounds in color transformation function - powerpc64/bpf: Limit 'ldbrx' to processors compliant with ISA v2.06 - spi: fix kabi breakage in struct spi_controller - spi: Fix deadlock when adding SPI controllers on SPI buses - !9278 CVE-2021-47231 - !8783 v2 arm64 mpam fix patch - !9270 inet_diag: fix kernel-infoleak for UDP sockets - !9140 v2 CVE-2024-36971 - !8847 wl1251: Fix possible buffer overflow in wl1251_cmd_scan - !9260 v3 ftrace: Fix possible use-after-free issue in ftrace_location() - net: bridge: xmit: make sure we have at least eth header len bytes - mm, vmscan: prevent infinite loop for costly GFP_NOIO | __GFP_RETRY_MAYFAIL allocations - of: module: add buffer overflow check in of_modalias() - !9061 iio: mma8452: Fix trigger reference couting - can: mcba_usb_start(): add missing urb->transfer_dma initialization - can: mcba_usb: fix memory leak in mcba_usb - inet_diag: fix kernel-infoleak for UDP sockets - ftrace: Fix possible use-after-free issue in ftrace_location() - !9227 kprobes: Fix possible use-after-free issue on kprobe registration - !9228 coresight: tmc-etf: Fix global-out-of-bounds in tmc_update_etf_buffer() - !9225 can: sja1000: fix use after free in ems_pcmcia_add_card() - !8656 mm, slub: fix potential memoryleak in kmem_cache_open() - !8937 firewire: ohci: mask bus reset interrupts between ISR and bottom half - !8691 Fix page corruption caused by racy check in __free_pages - batman-adv: Avoid WARN_ON timing related checks - coresight: tmc-etf: Fix global-out-of-bounds in tmc_update_etf_buffer() - kprobes: Fix possible use-after-free issue on kprobe registration - can: sja1000: fix use after free in ems_pcmcia_add_card() - !9179 CVE-2021-47232 - !9004 media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() - !8130 v2 CVE-2021-47493 - !9006 media: tc358743: register v4l2 async device only after successful setup - !9144 serial: 8250_exar: Don't remove GPIO device on suspend - sched: smart_grid: fix potential NULL pointer dereference - can: j1939: fix Use-after-Free, hold skb ref while in use - can: j1939: transport: j1939_session_tx_dat(): fix use-after-free read in j1939_tp_txtimer() - can: j1939: transport: add j1939_session_skb_find_by_offset() function - !8800 ALSA: usb-audio: Stop parsing channels bits when all channels are found. - !8798 hid: cp2112: Fix duplicate workqueue initialization - !8799 usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete - serial: 8250_exar: Don't remove GPIO device on suspend - net: fix kabi breakage in struct dst_ops - net: fix __dst_negative_advice() race - iio: mma8452: Fix trigger reference couting - media: tc358743: register v4l2 async device only after successful setup - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() - firewire: ohci: mask bus reset interrupts between ISR and bottom half - wifi: nl80211: don't free NULL coalescing rule - wl1251: Fix possible buffer overflow in wl1251_cmd_scan - ALSA: usb-audio: Stop parsing channels bits when all channels are found. - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete - hid: cp2112: Fix duplicate workqueue initialization - arm64/mpam: Fix softlockup when reading mondata - arm64/mpam: Fix wrong seconds to jiffies conversion - arm64/mpam: change allocation mode from GFP_KERNEL to GFP_NOWAIT - mpam/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup - mpam/resctrl: Clean up resctrl_group_rmdir_[ctrl/mon]() - mpam/resctrl: Clean up unused function parameter in mkdir path - mpam/resctrl: Fix a deadlock due to inaccurate reference - atl1c: Work around the DMA RX overflow issue - Fix page corruption caused by racy check in __free_pages - mm, slub: fix potential memoryleak in kmem_cache_open() - rpmsg: virtio: Free driver_override when rpmsg_remove() - scsi: mpt3sas: Fix kernel panic during drive powercycle test - loop: use lo->lo_disk for kobject_uevent - jbd2: export jbd2_journal_[grab|put]_journal_head - ocfs2: fix a deadlock when commit trans - ocfs2: fix race between searching chunks and release journal_head from buffer_head- !9086 v2 dhugetlb: use rcu lock to protect hpool - !8796 CVE-2023-52810 - !8699 wifi: cfg80211: check A-MSDU format more carefully - !9123 staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() - staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() - !9005 scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload - !9113 IB/qib: Protect from buffer - !9119 PCI: aardvark: Fix kernel panic during PIO transfer - !9058 watchdog: Fix possible use-after-free by calling del_timer_sync() - !9053 soc: fsl: qbman: Use raw spinlock for cgr_lock - PCI: aardvark: Fix kernel panic during PIO transfer - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response - PCI: aardvark: Don't rely on jiffies while holding spinlock - !9091 RDMA/cma: Fix rdma_resolve_route() memory leak - IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() - IB/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields - !9037 fix CVE-2021-47509 - RDMA/cma: Fix rdma_resolve_route() memory leak - dhugetlb: use rcu lock to protect hpool - !8291 Fix CVE-2023-52836 - !8574 net: ieee802154: fix null deref in parse dev addr - !9017 misc/libmasm/module: Fix two use after free in ibmasm_init_one - !9045 ALSA: seq: Fix race of snd_seq_timer_open() - !9046 net: rds: fix memory leak in rds_recvmsg - !8632 phy: phy-mtk-tphy: Fix some resource leaks in mtk_phy_init() - !8695 net: macb: fix use after free on rmmod - !4633 Add support for Hygon family 18h model 5h HD-Audio - !9057 CVE-2021-47261 - !8637 dyndbg: fix old BUG_ON in >control parser - !8698 net: batman-adv: fix error handling - !8715 net/sched: act_skbmod: prevent kernel-infoleak - !8775 llc: verify mac len before reading mac header - watchdog: Fix possible use-after-free by calling del_timer_sync() - IB/mlx5: Fix initializing CQ fragments buffer - soc: fsl: qbman: Use raw spinlock for cgr_lock - !9022 wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() - !8786 tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc - !8704 usb: fix various gadget panics on 10gbps cabling - !9013 net: encx24j600: check error in devm_regmap_init_encx24j600 - net: rds: fix memory leak in rds_recvmsg - ALSA: seq: Fix race of snd_seq_timer_open() - !9036 IB/hfi1: Restore allocated resources on failed copyout - !4620 Some fixes for Hygon model 4h~6h processors - !4630 Add support for Hygon model 6h L3 PMU - ALSA: pcm: oss: Limit the period size to 16MB - ALSA: pcm: oss: Fix potential out-of-bounds shift - !8549 batman-adv: Avoid infinite loop trying to resize local TT - !8763 tipc: fix UAF in error path - IB/hfi1: Restore allocated resources on failed copyout - !8956 net: ti: fix UAF in tlan_remove_one - !8959 comedi: vmk80xx: fix bulk-buffer overflow - !8740 CVE-2024-36914 - !8824 igb: Fix use-after-free error during reset - !8987 bna: ensure the copied buf is NUL terminated - !9026 tty: n_gsm: fix possible out-of-bounds in gsm0_receive() - !8923 i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc - !8961 nfp: Fix memory leak in nfp_cpp_area_cache_add() - !8875 drm/vmwgfx: Fix invalid reads in fence signaled events - !8883 scsi: lpfc: Move NPIV's transport unregistration to after resource clean up - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() - misc/libmasm/module: Fix two use after free in ibmasm_init_one - net: encx24j600: check error in devm_regmap_init_encx24j600 - !8998 i2c: acpi: fix resource leak in reconfiguration device addition - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload - !8991 clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data - !8992 fix CVE-2024-36905 - i2c: acpi: fix resource leak in reconfiguration device addition - !8868 ipv6: prevent NULL dereference in ip6_output() - net: relax socket state check at accept time. - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets - !8737 ubifs: Set page uptodate in the correct place - !8668 phonet/pep: fix racy skb_queue_empty() use - clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data - bna: ensure the copied buf is NUL terminated - nfp: Fix memory leak in nfp_cpp_area_cache_add() - comedi: vmk80xx: fix bulk-buffer overflow - net: ti: fix UAF in tlan_remove_one - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc - scsi: lpfc: Move NPIV's transport unregistration to after resource clean up - drm/vmwgfx: Fix invalid reads in fence signaled events - ipv6: prevent NULL dereference in ip6_output() - igb: Fix use-after-free error during reset - fs/jfs: Add check for negative db_l2nbperpage - jfs: jfs_dmap: Validate db_l2nbperpage while mounting - tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc - llc: verify mac len before reading mac header - tipc: fix UAF in error path - drm/amd/display: Skip on writeback when it's not applicable - ubifs: Set page uptodate in the correct place - net/sched: act_skbmod: prevent kernel-infoleak - usb: fix various gadget panics on 10gbps cabling - wifi: cfg80211: check A-MSDU format more carefully - net: batman-adv: fix error handling - net: macb: fix use after free on rmmod - phonet/pep: fix racy skb_queue_empty() use - dyndbg: fix old BUG_ON in >control parser - phy: phy-mtk-tphy: Fix some resource leaks in mtk_phy_init() - net: ieee802154: fix null deref in parse dev addr - batman-adv: Avoid infinite loop trying to resize local TT - locking/ww_mutex/test: Fix potential workqueue corruption - EDAC/amd64: Adjust UMC channel for Hygon family 18h model 6h - x86/amd_nb: Get DF ID from F5 device for Hygon family 18h model 6h - EDAC/amd64: Fix intlv_num_chan for Hygon family 18h model 4h - EDAC/amd64: Revert hi_addr_offset for Hygon family 18h model 4h - ALSA: hda: Fix single byte write failure issue for Hygon - ALSA: hda: Add Hygon HD-Audio support - perf/x86/uncore: Add L3 PMU support for Hygon family 18h model 6h- !8895 net: fix out-of-bounds access in ops_init - !8694 clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data - !8858 PCI/PM: Drain runtime-idle callbacks before driver removal - !8626 fs/9p: only translate RWX permissions for plain 9P2000 - !8490 scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() - !8777 memory: fsl_ifc: fix leak of IO mapping on probe failure - !8806 media: zr364xx: fix memory leak in zr364xx_start_readpipe - !8664 mmc: mmc_spi: fix error handling in mmc_spi_probe() - !8865 staging: rtl8712: fix use-after-free in rtl8712_dl_fw - !8888 nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). - !8825 watchdog: Fix possible use-after-free in wdt_startup() - !8654 nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done - !8358 perf report: Fix memory leaks around perf_tip() - !8552 tipc: fix a possible memleak in tipc_buf_append - !8851 ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() - net: fix out-of-bounds access in ops_init - !8802 CVE-2021-47294 - nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). - staging: rtl8712: fix use-after-free in rtl8712_dl_fw - PCI/PM: Drain runtime-idle callbacks before driver removal - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() - !8628 erspan: make sure erspan_base_hdr is present in skb->head - !8716 CVE-2024-35910 - !8325 ocfs2: fix data corruption after conversion from inline format - !8729 tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). - !8636 ipv6: Fix potential uninit-value access in __ip6_make_skb() - watchdog: Fix possible use-after-free in wdt_startup() - !8773 sched: remove WARN_ON on checking rq->tmp_alone_branch - media: zr364xx: fix memory leak in zr364xx_start_readpipe - !8678 can: pch_can: pch_can_rx_normal: fix use after free - netrom: Fix use-after-free of a listening socket. - netrom: Decrease sock refcount when sock timers expire - !8676 net: tulip: de4x5: fix the problem that the array 'lp->phy[8 - !8708 media: imon: fix access to invalid resource for the second interface - !8707 regmap: Fix possible double-free in regcache_rbtree_exit() - !8706 isdn: mISDN: Fix sleeping function called from invalid context - !8705 usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency - !8357 nilfs2: fix underflow in second superblock position calculations - !8681 rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation - !8484 scsi: megaraid_sas: Fix resource leak in case of probe failure - memory: fsl_ifc: fix leak of IO mapping on probe failure - sched: remove WARN_ON on checking rq->tmp_alone_branch - !8620 CVE-2024-35896 - !8526 SUNRPC: Fix RPC client cleaned up the freed pipefs dentries - !8336 tcp: fix page frag corruption on page fault - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). - !8521 isofs: Fix out of bound access for corrupted isofs image - !7786 powerpc/powernv: Add a null pointer check in opal_event_init() - !8568 gfs2: Fix use-after-free in gfs2_glock_shrink_scan - tcp: properly terminate timers for kernel sockets - mptcp: add sk_stop_timer_sync helper - !8478 arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY - !8366 net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() - !8544 CVE-2021-47358 - !8577 mmc: sdhci-msm: pervent access to suspended controller - !8579 net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() - !8603 rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() - media: imon: fix access to invalid resource for the second interface - regmap: Fix possible double-free in regcache_rbtree_exit() - isdn: mISDN: Fix sleeping function called from invalid context - usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency - !8516 CVE-2021-47409 - !8465 drm/amd/display: Avoid NULL dereference of timing generator - !8500 pwm: Fix double shift bug - clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation - can: pch_can: pch_can_rx_normal: fix use after free - net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound - !8402 i40e: Fix freeing of uninitialized misc IRQ vector - !8398 comedi: ni_usb6501: fix NULL-deref in command paths - mmc: mmc_spi: fix error handling in mmc_spi_probe() - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done - !8464 i2c: smbus: fix NULL function pointer dereference - !8434 iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove - !8411 platform/x86: wmi: Fix opening of char device - ipv6: Fix potential uninit-value access in __ip6_make_skb() - !8307 s390/dasd: protect device queue against concurrent access - !8444 CVE-2021-47511 - !8443 v2 ipack: ipoctal: fix module reference leak - !8611 smackfs: restrict bytes count in smk_set_cipso() - !8610 media: gspca: cpia1: shift-out-of-bounds in set_flicker - !8609 can: peak_pci: peak_pci_remove(): fix UAF - !8430 drm/sched: Avoid data corruptions - !8557 net: cdc_eem: fix tx fixup skb leak - !8365 efi/capsule-loader: fix incorrect allocation size - !8333 soc: qcom: llcc: Handle a second device without data corruption - erspan: make sure erspan_base_hdr is present in skb->head - fs/9p: only translate RWX permissions for plain 9P2000 - netfilter: complete validation of user input - netfilter: validate user input for expected length - smackfs: restrict bytes count in smk_set_cipso() - media: gspca: cpia1: shift-out-of-bounds in set_flicker - can: peak_pci: peak_pci_remove(): fix UAF - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() - mmc: sdhci-msm: pervent access to suspended controller - gfs2: Fix use-after-free in gfs2_glock_shrink_scan - net: cdc_eem: fix tx fixup skb leak - tipc: fix a possible memleak in tipc_buf_append - staging: greybus: uart: fix tty use after free - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries - isofs: Fix out of bound access for corrupted isofs image - usb: dwc2: Fix memory leak in dwc2_hcd_init - usb: dwc2: check return value after calling platform_get_resource() - pwm: Fix double shift bug - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() - scsi: megaraid_sas: Fix resource leak in case of probe failure - arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY - drm/amd/display: Avoid NULL dereference of timing generator - i2c: smbus: fix NULL function pointer dereference - ALSA: pcm: oss: Fix negative period/buffer sizes - ALSA: pcm: oss: Fix a few more UBSAN fixes - ipack: ipoctal: fix module reference leak - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove - drm/sched: Avoid data corruptions - platform/x86: wmi: Fix opening of char device - i40e: Fix freeing of uninitialized misc IRQ vector - comedi: ni_usb6501: fix NULL-deref in command paths - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() - efi/capsule-loader: fix incorrect allocation size - perf report: Fix memory leaks around perf_tip() - nilfs2: fix underflow in second superblock position calculations - tcp: fix page frag corruption on page fault - soc: qcom: llcc: Handle a second device without data corruption - ocfs2: fix data corruption after conversion from inline format - s390/dasd: protect device queue against concurrent access - powerpc/powernv: Add a null pointer check in opal_event_init()- scsi: hisi_sas: Allocate DFX memory during dump trigger- !8437 comedi: dt9812: fix DMA buffers on stack - !8515 v2 *** CVE-2021-47356 *** - !8582 v2 bcache: avoid oversized read request in cache missing code path - !8522 smb: client: fix use-after-free bug in cifs_debug_data_proc_show() - !8499 udf: Fix NULL pointer dereference in udf_symlink function - !8498 Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout - !8570 net: hamradio: fix memory leak in mkiss_close - !8506 CVE-2024-36015 - !8508 memory: fsl_ifc: fix leak of private memory on probe failure - !8470 v2 CVE-2024-35808 - !8050 block: prevent division by zero in blk_rq_stat_sum() - !8469 watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() - !8482 v2 Fix hugetlb deadlock - bcache: avoid oversized read request in cache missing code path - !8327 wifi: mac80211: don't return unset power in ieee80211_get_tx_power() - !8316 net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path - net: hamradio: fix memory leak in mkiss_close - !8310 jfs: fix two - !8507 tty: vcc: Add check for kstrdup() in vcc_probe() - !8441 pinctrl: core: delete incorrect free in pinctrl_enable() - !8414 backport for CVE-2023-52750 - !8449 drm/amd/pm: Update intermediate power state for SI - !8453 net: fix uninit-value in caif_seqpkt_sendmsg - !6800 block: fix overflow in blk_ioctl_discard() - !8068 CVE-2021-47427 - !8102 v2 sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl - !8413 NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() - !8417 NFC: digital: fix possible memory leak in digital_in_send_sdd_req() - !8403 can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv - !8393 4.19: fix CVE-2024-35978 - !8349 perf hist: Fix memory leak of a perf_hpp_fmt - smb: client: fix use-after-free bug in cifs_debug_data_proc_show() - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq - mISDN: fix possible use-after-free in HFC_cleanup() - memory: fsl_ifc: fix leak of private memory on probe failure - tty: vcc: Add check for kstrdup() in vcc_probe() - !8296 atm: iphase: fix possible use-after-free in ia_module_exit() - !8297 v2 powerpc/mm: Fix lockup on kernel exec fault - !8405 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path - ppdev: Add an error check in register_device - ppdev: Remove usage of the deprecated ida_simple_xx() API - !8423 mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap - udf: Fix NULL pointer dereference in udf_symlink function - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout - !8354 CVE-2021-47277 - !8386 drm/nouveau/debugfs: fix file release memory leak - !8452 Fix CVE-2021-47438 - !8308 mac80211: fix use-after-free in CCMP/GCMP RX - !8341 net/mlx5: Properly link new fs rules into the tree - hugetlb: pass head page to remove_hugetlb_page() - hugetlbfs: fix hugetlbfs_statfs() locking - hugetlb: make free_huge_page irq safe - hugetlb: change free_pool_huge_page to remove_pool_huge_page - hugetlb: call update_and_free_page without hugetlb_lock - hugetlb: create remove_hugetlb_page() to separate functionality - Revert "hugetlb: make free_huge_page irq safe" - Revert "hugetlbfs: fix hugetlbfs_statfs() locking" - !8075 v2 HID: betop: fix slab-out-of-bounds Write in betop_probe - md/dm-raid: don't clear MD_RECOVERY_FROZEN after setting frozen - md/dm-raid: don't call md_reap_sync_thread() directly - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() - !8191 HID: usbhid: free raw_report buffers in usbhid_stop - !8314 mcb: fix error handling in mcb_alloc_bus() - !7852 CVE-2021-47407 - net: fix uninit-value in caif_seqpkt_sendmsg - net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() - net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path - !8276 usb: udc: remove warning when queue disabled ep - !8142 i40e: Do not use WQ_MEM_RECLAIM flag for workqueue - !8410 iio: adc: stm32-adc: harden against NULL pointer deref in stm32_adc_probe() - drm/amd/pm: Update intermediate power state for SI - !8175 jfs: fix array-index-out-of-bounds in diAlloc - pinctrl: core: delete incorrect free in pinctrl_enable() - comedi: dt9812: fix DMA buffers on stack - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap - !8292 netfilter: conntrack: serialize hash resizes and cleanups - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() - arm64: Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer - arm64: Make CPU_BIG_ENDIAN depend on ld.bfd or ld.lld 13.0.0+ - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() - iio: adc: stm32-adc: harden against NULL pointer deref in stm32_adc_probe() - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path - !8348 ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() - can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv - !8324 drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga - !8394 hugetlbfs: fix hugetlbfs_statfs() locking - !8188 v2 ACPI: video: check for error while searching for backlight device parent - hugetlbfs: fix hugetlbfs_statfs() locking - Bluetooth: Fix memory leak in hci_req_sync_complete() - !8303 ipvlan: add ipvlan_route_v6_outbound() helper - drm/nouveau/debugfs: fix file release memory leak - !8211 fix CVE-2024-35877 - !7964 v2 vt: fix unicode buffer corruption when deleting characters - !8160 v2 ipack: ipoctal: fix stack information leak - !8100 arch related major bugfix before 2023 - !8192 atm: nicstar: Fix possible use-after-free in nicstar_cleanup() - kvm: fix previous commit for 32-bit builds - kvm: avoid speculation-based attacks from out-of-range memslot accesses - !8181 v3 cpu/hotplug: Don't offline the last non-isolated CPU - perf hist: Fix memory leak of a perf_hpp_fmt - ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() - !8205 fix hugetlb deadlock - !8061 *** CVE-2021-47475 *** - !8252 sysv: don't call sb_bread() with pointers_lock held - !8248 gfs2: ignore negated quota changes - !8206 RDMA: Verify port when creating flow rule - net/mlx5: Properly link new fs rules into the tree - wifi: mac80211: don't return unset power in ieee80211_get_tx_power() - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga - !8219 tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING - !8223 CVE-2023-52804 - net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path - mcb: fix error handling in mcb_alloc_bus() - jfs: fix array-index-out-of-bounds in dbFindLeaf - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev - mac80211: fix use-after-free in CCMP/GCMP RX - !8209 net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() - !8257 v5 can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds - ipvlan: add ipvlan_route_v6_outbound() helper - powerpc/mm: Fix lockup on kernel exec fault - atm: iphase: fix possible use-after-free in ia_module_exit() - netfilter: conntrack: serialize hash resizes and cleanups - !8062 CVE-2024-35789 - usb: udc: remove warning when queue disabled ep - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is accessed out of bounds - !7804 v2 selinux: avoid dereference of garbage after mount failure - sysv: don't call sb_bread() with pointers_lock held - !8186 ALSA: hda: Fix possible null-ptr-deref when assigning a stream - !8208 ocfs2: mount fails with buffer overflow in strlen - !8207 drm/msm: Fix null pointer dereference on pointer edp - gfs2: ignore negated quota changes - !7470 x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ - !7699 CVE-2023-52669 - !7868 CVE-2024-35995 - fs/jfs: Add validity check for db_maxag and db_agpref - fs: jfs: fix shift-out-of-bounds in dbAllocAG - jfs: fix divide error in dbNextAG - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING - x86/mm/pat: fix VM_PAT handling in COW mappings - net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() - ocfs2: mount fails with buffer overflow in strlen - drm/msm: Fix null pointer dereference on pointer edp - !8180 Fix CVE-2021-47495 - RDMA: Verify port when creating flow rule - hugetlb: make free_huge_page irq safe - mm/hugetlb: defer freeing of huge pages if in non-task context - !8146 pinctrl: single: fix potential NULL dereference - !8164 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb - !8131 scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() - atm: nicstar: Fix possible use-after-free in nicstar_cleanup() - HID: usbhid: free raw_report buffers in usbhid_stop - ACPI: video: check for error while searching for backlight device parent - ALSA: hda: Fix possible null-ptr-deref when assigning a stream - cpu/hotplug: Don't offline the last non-isolated CPU - usbnet: fix error return code in usbnet_probe() - usbnet: sanity check for maxpacket - jfs: fix array-index-out-of-bounds in diAlloc - sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb - ipack: ipoctal: fix stack information leak - pinctrl: single: fix potential NULL dereference - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue - scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl - x86/ioapic: Unbreak check_timer() - irqchip/gic-v3: Ensure pseudo-NMIs have an ISB between ack and handling - genirq/ipi: Fix NULL pointer deref in irq_data_get_affinity_mask() - HID: betop: fix slab-out-of-bounds Write in betop_probe - scsi: iscsi: Fix iscsi_task use after free - scsi: iscsi: Have abort handler get ref to conn - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN - comedi: vmk80xx: fix expression for tx buffer size - comedi: vmk80xx: fix transfer-buffer overflows - block: prevent division by zero in blk_rq_stat_sum() - vt: fix unicode buffer corruption when deleting characters - ACPI: CPPC: Fix access width used for PCC registers - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro - ACPI: CPPC: Use access_width over bit_width for system memory accesses - ACPI: CPPC: Fix up I/O port access in cpc_read() - ACPI: CPPC: Implement support for SystemIO registers - KVM: x86: Handle SRCU initialization failure during page track init - selinux: avoid dereference of garbage after mount failure - crypto: s390/aes - Fix buffer overread in CTR mode - x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ - block: fix overflow in blk_ioctl_discard()- !8066 drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 - !8038 CVE-2023-52817 - !8106 usb: dwc3: ep0: fix NULL pointer exception - !8059 soc: fsl: qbman: Always disable interrupts when taking cgr_lock - !8017 perf/core: Bail out early if the request AUX area is out of bound - !8064 isdn: mISDN: netjet: Fix crash in nj_probe: - !8049 xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING - usb: dwc3: ep0: fix NULL pointer exception - !8055 drm/client: Fully protect modes[ - !8000 v2 net/tls: Fix flipped sign in tls_err_abort() calls - !8032 netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 - isdn: mISDN: netjet: Fix crash in nj_probe: - !8056 scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() - !7999 HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up - soc: fsl: qbman: Always disable interrupts when taking cgr_lock - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() - drm/client: Fully protect modes[] with dev->mode_config.mutex - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING - !7817 netfilter: nft_flow_offload: reset dst in route object after setting up flow - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL - netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() - !7965 nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells - !7951 sched/rt: Fix rt_runtime leaks with cpu hotplug and RT_RUNTIME_SHARE - perf/core: Bail out early if the request AUX area is out of bound - !7981 Fix CVE-2021-47455 - !7901 f2fs: fix to avoid racing on fsync_entry_slab by multi filesystem instances - !7700 scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() - !7682 dm snapshot: fix lockup in dm_exception_table_exit - !7867 media: bttv: fix use after free error due to btv->timeout timer - !7421 x86/CPU/AMD: Update the Zenbleed microcode revisions - !7415 cpu/SMT: Make SMT control more robust against enumeration failures - !7451 v2 ip: Treat IPv4 segment's lowest address as unicast - !7393 v2 scsi: sr: Do not leak information in ioctl - !7971 fbmon: prevent division by zero in fb_videomode_from_videomode() - net/tls: Fix flipped sign in tls_err_abort() calls - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up - !7963 ipv6: Fix infinite recursion in fib6_dump_done(). - !7979 drm/radeon: fix a possible null pointer dereference - ptp: fix code indentation issues - ptp: Fix possible memory leak in ptp_clock_register() - drm/radeon: fix a possible null pointer dereference - fbmon: prevent division by zero in fb_videomode_from_videomode() - !7944 v2 netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries - nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells - ipv6: Fix infinite recursion in fib6_dump_done(). - sched/rt: Fix rt_runtime leaks with cpu hotplug and RT_RUNTIME_SHARE - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries - !7811 Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() - !7892 CVE-2023-52868 - !7910 hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs - !7851 netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser - f2fs: fix to avoid racing on fsync_entry_slab by multi filesystem instances - thermal: core: prevent potential string overflow - !7854 net/mlx5e: fix a double-free in arfs_create_groups - !7794 v2 Fix CVE-2023-52656 - media: bttv: fix use after free error due to btv->timeout timer - !7840 netrom: Fix a data-race around sysctl_netrom_transport_timeout - net/mlx5e: fix a double-free in arfs_create_groups - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser - !7770 drm/amd/pm: fix a double-free in si_dpm_init - netrom: Fix a data-race around sysctl_netrom_transport_timeout - !7589 irqchip/gic-v3-its: Prevent double free on error - !7713 CVE-2024-35936 - !7751 Fix CVE-2023-52698 - netfilter: nft_flow_offload: reset dst in route object after setting up flow - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() - io_uring: drop any code related to SCM_RIGHTS - io_uring/unix: drop usage of io_uring socket - !7742 netrom: Fix data-races around sysctl_net_busy_read - !7748 drm/radeon: possible buffer overflow - drm/amd/pm: fix a double-free in si_dpm_init - calipso: fix memory leak in netlbl_calipso_add_pass() - netlabel: remove unused parameter in netlbl_netlink_auditinfo() - net: netlabel: Fix kerneldoc warnings - drm/radeon: possible buffer overflow - netrom: Fix data-races around sysctl_net_busy_read - !7669 btrfs: send: handle path ref underflow in header iterate_inode_ref() - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks() - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() - dm snapshot: fix lockup in dm_exception_table_exit - btrfs: send: handle path ref underflow in header iterate_inode_ref() - irqchip/gic-v3-its: Prevent double free on error - ip: Treat IPv4 segment's lowest address as unicast - x86/CPU/AMD: Update the Zenbleed microcode revisions - cpu/SMT: Make SMT control more robust against enumeration failures - scsi: sr: Do not leak information in ioctl- !7694 Bluetooth: af_bluetooth: Fix deadlock - !7701 ext4: fix corruption during on-line resize - !7676 sched/all: Change all BUG_ON() instances in the scheduler to WARN_ON_ONCE() - ext4: fix corruption during on-line resize - Bluetooth: af_bluetooth: Fix deadlock - !7573 pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() - sched/all: Change all BUG_ON() instances in the scheduler to WARN_ON_ONCE() - !7547 btrfs: fix information leak in btrfs_ioctl_logical_to_ino() - !7586 powerpc/imc-pmu: Add a null pointer check in update_events_in_group() - powerpc/imc-pmu: Add a null pointer check in update_events_in_group() - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() - !7477 firewire: nosy: ensure user_length is taken into account when fetching packet contents - btrfs: fix information leak in btrfs_ioctl_logical_to_ino() - !7483 Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout - firewire: nosy: ensure user_length is taken into account when fetching packet contents - !7425 net: gtp: Fix Use-After-Free in gtp_dellink - !7434 net: openvswitch: Fix Use-After-Free in ovs_ct_exit - net: openvswitch: Fix Use-After-Free in ovs_ct_exit - net: gtp: Fix Use-After-Free in gtp_dellink - !7228 s390/zcrypt: fix reference counting on zcrypt card objects - !7193 CVE-2024-26921 - !7096 fix CVE-2024-26865 - s390/zcrypt: fix reference counting on zcrypt card objects - sk_buff: Fix KABI break for the modification of struct sk_buff - inet: inet_defrag: prevent sk release while still in use - inet: frags: re-introduce skb coalescing for local delivery - net: Fix KABI break for introducing is_skb_wmem() - skb_expand_head() adjust skb->truesize incorrectly - skbuff: introduce skb_expand_head() - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge() - tcp: Clean up kernel listener's reqsk in inet_twsk_purge()- !7194 s390/dasd: fix double module refcount decrement - !7059 nilfs2: prevent kernel bug at submit_bh_wbc() - !7163 v2 usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error - !7104 KVM: Always flush async #PF workqueue when vCPU is being destroyed - !7203 NTB: fix possible name leak in ntb_register_device() - NTB: fix possible name leak in ntb_register_device() - s390/dasd: fix double module refcount decrement - !7158 v2 Squashfs: check the inode number is not the invalid value of zero - !7181 nfs: fix UAF in direct writes - !7091 nouveau: lock the client object tree. - !7120 v2 clk: zynq: Prevent null pointer dereference caused by kmalloc failure - !7089 nilfs2: fix failure to detect DAT corruption in btree and direct mappings - !7151 v2 scsi: sd: Fix sd_do_mode_sense() buffer length handling - nfs: fix UAF in direct writes - !7033 Revert "tracing/trigger: Fix to return error if failed to alloc snapshot" - !7079 nvmet: fix a use-after-free - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error - !7140 media: usbtv: Remove useless locks in usbtv_video_free() - Squashfs: check the inode number is not the invalid value of zero - scsi: sd: Fix sd_do_mode_sense() buffer length handling - !7137 v2 SUNRPC: fix a memleak in gss_import_v2_context - !7138 SUNRPC: fix some memleaks in gssx_dec_option_array - !7100 netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() - !7095 CVE-2024-27020 - media: usbtv: Remove useless locks in usbtv_video_free() - SUNRPC: fix some memleaks in gssx_dec_option_array - SUNRPC: fix a memleak in gss_import_v2_context - !7114 v2 backport patch for thp deferred list for 4.19 - !7034 fix CVE-2024-27001 for 4.19 - !7032 clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays - !7115 drm/radeon: add a force flush to delay work when radeon - !7055 scsi: qla2xxx: Fix command flush on cable pull - !7109 fix CVE-2024-26960 - clk: zynq: Prevent null pointer dereference caused by kmalloc failure - !6260 packet: move from strlcpy with unused retval to strscpy - drm/radeon: add a force flush to delay work when radeon - THP: avoid lock when check whether THP is in deferred list - mm/mmu_gather: limit free batch count and add schedule point in tlb_batch_pages_flush - mm, thp: do not queue fully unmapped pages for deferred split - !7046 USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - mm: swap: fix race between free_swap_and_cache() and swapoff() - mm/swapfile.c: use __try_to_reclaim_swap() in free_swap_and_cache() - !7053 CVE-2024-27024 - KVM: Always flush async #PF workqueue when vCPU is being destroyed - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() - !6970 ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() - !6995 v2 net/mlx5e: Prevent deadlock while disabling aRFS - !7038 i40e: Fix NULL ptr dereference on VSI filter sync - !7037 media: v4l2-tpg: fix some memleaks in tpg_alloc - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() - netfilter: nf_tables: __nft_expr_type_get() selects specific family type - nouveau: lock the client object tree. - nilfs2: fix failure to detect DAT corruption in btree and direct mappings - !6992 media: edia: dvbdev: fix a use-after-free - nvmet: fix a use-after-free - !7045 v2 b43: fix CVE-2023-52644 - !7017 v2 net: ath9k: fix CVE-2024-26897 - nilfs2: prevent kernel bug at submit_bh_wbc() - !7016 v3 Fix CVE-2022-48693 - !7012 clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays - scsi: qla2xxx: Fix command flush on cable pull - net/rds: fix possible cp null dereference - net/rds: fix WARNING in rds_conn_connect_if_down - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command - !6991 mac802154: fix llsec key resources release in mac802154_llsec_key_del - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled - b43: dma: Fix use true/false for bool type variable - !7005 media: ttpci: fix two memleaks in budget_av_attach - !7014 nilfs2: fix OOB in nilfs_set_de_type - !7001 fix CVE-2024-27010 - i40e: Fix NULL ptr dereference on VSI filter sync - media: v4l2-tpg: fix some memleaks in tpg_alloc - !6880 media: go7007: fix a memleak in go7007_load_encoder - comedi: vmk80xx: fix incomplete endpoint checking - Revert "tracing/trigger: Fix to return error if failed to alloc snapshot" - clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays - !6984 clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays - !6893 cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value - !6958 netfilter: nf_tables: fix memleak in map from abort path - !6820 s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup - !6940 drm: nv04: Fix out of bounds access - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete - ath9k_htc: fix NULL pointer dereference at ath9k_htc_tx_get_packet() - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe - nilfs2: fix OOB in nilfs_set_de_type - !6968 CVE-2024-26974 - clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays - !6976 nfp: flower: handle acti_netdevs allocation failure - media: ttpci: fix two memleaks in budget_av_attach - !6944 USB: core: Fix deadlock in usb_deauthorize_interface() - net/sched: fix kabi change in struct Qdisc - net/sched: Fix mirred deadlock on device recursion - !6870 scsi: mpt3sas: Fix use-after-free warning - net/mlx5e: Prevent deadlock while disabling aRFS - media: edia: dvbdev: fix a use-after-free - !6966 speakup: Avoid crash on very long word - !6963 v2 CVE-2024-27000 - mac802154: fix llsec key resources release in mac802154_llsec_key_del - clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays - !6942 v2 ima: fix deadlock when traversing "ima_default_rules". - !6951 v2 spi: spi-mt65xx: Fix NULL pointer access in interrupt handler - nfp: flower: handle acti_netdevs allocation failure - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() - crypto: qat - resolve race condition during AER recovery - crypto: qat - fix double free during reset - !6881 v4 CVE-2024-26846 - !6894 tun: limit printing rate when illegal packet received by tun dev - speakup: Avoid crash on very long word - serial: core: fix kernel-doc for uart_port_unlock_irqrestore() - serial: mxs-auart: add spinlock around changing cts state - serial: core: Provide port lock wrappers - !6883 Bluetooth: Fix TOCTOU in HCI debugfs implementation - !6856 media: dvb-frontends: avoid stack overflow warnings with clang - netfilter: nf_tables: fix memleak in map from abort path - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler - !6839 CVE-2023-52650 - !6869 v2 media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity - !6867 v2 nouveau: fix instmem race condition around ptr stores - USB: core: Fix deadlock in usb_deauthorize_interface() - !6852 serial/pmac_zilog: Remove flawed mitigation for rx irq flood - ima: fix deadlock when traversing "ima_default_rules". - drm: nv04: Fix out of bounds access - tun: limit printing rate when illegal packet received by tun dev - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value - Bluetooth: Fix TOCTOU in HCI debugfs implementation - nvme-fc: do not wait in vain when unloading module - nvme-fc: remove err_work work item - media: go7007: fix a memleak in go7007_load_encoder - scsi: mpt3sas: Fix use-after-free warning - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity - nouveau: fix instmem race condition around ptr stores - media: dvb-frontends: avoid stack overflow warnings with clang - serial/pmac_zilog: Remove flawed mitigation for rx irq flood - drm/tegra: dsi: Add missing check for of_find_device_by_node - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup - packet: move from strlcpy with unused retval to strscpy- !6858 CVE-2024-26883 - !6836 fs: sysfs: Fix reference leak in sysfs_break_active_protection() - !6845 erofs: fix pcluster use-after-free on UP platforms - !6827 fat: fix uninitialized field in nostale filehandles - !6807 CVE-2024-26923 - !6847 ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() - bpf: Fix stackmap overflow check on 32-bit arches - bpf: Check for integer overflow when using roundup_pow_of_two() - !6758 CVE-2022-48664 - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() - erofs: fix pcluster use-after-free on UP platforms - fs: sysfs: Fix reference leak in sysfs_break_active_protection() - !6795 rtmutex: Add acquire semantics for rtmutex lock acquisition slow path - fat: fix uninitialized field in nostale filehandles - !6777 tun: Fix xdp_rxq_info's queue_index when detaching - !6803 scsi: target: core: Add TMF to tmr_list handling - af_unix: Suppress false-positive lockdep splat for spin_lock() in __unix_gc(). - af_unix: Fix garbage collector racing against connect() - scsi: target: core: Add TMF to tmr_list handling - !6705 quota: fix CVE-2024-26878 - rtmutex: Add acquire semantics for rtmutex lock acquisition slow path - tun: Fix xdp_rxq_info's queue_index when detaching - !6674 cifs: fix underflow in parse_server_interfaces() - !6494 v2 oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup - !6745 PCI/IOV: Improve performance of creating VFs concurrently - !6754 binder: check offset alignment in binder_get_object() - !6746 v3 openEuler-1.0-LTS: bugfix for mm - !6716 CVE-2024-26922 - btrfs: fix hang during unmount when stopping a space reclaim worker - Btrfs: fix crash during unmount due to race with delayed inode workers - binder: check offset alignment in binder_get_object() - !6652 geneve: make sure to pull inner header in geneve_rx() - mm/madvise: fix potential pte_unmap_unlock pte error - PCI/IOV: Improve performance of creating VFs concurrently - !6664 drm/bridge: adv7511: fix crash on irq during probe - !6653 net/ipv6: avoid possible UAF in ip6_route_mpath_notify() - !6510 cachefiles: fix memory leak in cachefiles_add_cache() - drm/amdgpu: validate the parameters of bo mapping operations more clearly - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va - drm/amdgpu: restrict bo mapping within gpu address limits - drm/amdgpu: check alignment on CPU page for bo map - quota: Fix potential NULL pointer dereference - quota: check time limit when back out space/inode change - quota: code cleanup for __dquot_alloc_space() - !6662 sched/rt: Disallow writing invalid values to sched_rt_period_us - !6661 sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset - !6659 sched/rt: Fix sysctl_sched_rr_timeslice intial value - !6578 drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip - !6641 CVE-2024-26863 - cifs: fix underflow in parse_server_interfaces() - !6646 fix race between rebuild scheduler domains and hotplug work - drm/bridge: adv7511: fix crash on irq during probe - sched/rt: Disallow writing invalid values to sched_rt_period_us - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset - sched/rt: Fix sysctl_sched_rr_timeslice intial value - !6642 v3 x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails - net/ipv6: avoid possible UAF in ip6_route_mpath_notify() - geneve: make sure to pull inner header in geneve_rx() - !6621 amdkfd: use calloc instead of kzalloc to avoid integer overflow - cpuset: fix race between rebuild scheduler domains and hotplug work - !6617 net/bnx2x: Prevent access to a freed page in page_pool - !6611 net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() - x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails - hsr: Fix uninit-value access in hsr_get_node() - net: hsr: fix placement of logical operator in a multi-line statement - !6397 btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve - !6616 drm/amdgpu: Reset IH OVERFLOW_CLEAR bit - amdkfd: use calloc instead of kzalloc to avoid integer overflow - net/bnx2x: Prevent access to a freed page in page_pool - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() - !6525 v2 CVE-2024-24860 bugfix - !6478 do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak - !6582 ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() - !6577 media: rc: bpf attach/detach requires write permission - !6560 IB/hfi1: Fix a memleak in init_credit_return - !6420 tty: fix read of tty->pgrp outside of ctrl_lock - !6436 dm: call the resume method on internal suspend - !6562 nfc: nci: free rx_data_reassembly skb on NCI device cleanup - !6481 CVE-2024-26875 - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() - drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip - media: rc: bpf attach/detach requires write permission - !6495 RDMA/srpt: Do not register event handler until srpt device is fully setup - !6457 CVE-2024-26813 - nfc: nci: free rx_data_reassembly skb on NCI device cleanup - IB/hfi1: Fix a memleak in init_credit_return - !6517 scsi: lpfc: Fix link down processing to address NULL pointer dereference - !6521 netfilter: nf_conntrack_h323: Add protection for bmp length out of range - !6454 CVE-2021-47182 - Bluetooth: Fix atomicity violation in {min,max}_key_size_set - Bluetooth: Move {min,max}_key_size debugfs into hci_debugfs_create_le - netfilter: nf_conntrack_h323: Add protection for bmp length out of range - scsi: lpfc: Fix link down processing to address NULL pointer dereference - cachefiles: fix memory leak in cachefiles_add_cache() - RDMA/srpt: Do not register event handler until srpt device is fully setup - mm: oom_kill: fix KABI broken by "oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup" - oom_kill.c: futex: delay the OOM reaper to allow time for proper futex cleanup - sched: Allocate a new task_struct_resvd object for fork task - media: pvrusb2: fix uaf in pvr2_context_set_notify - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak - vfio/platform: Create persistent IRQ handlers - vfio/platform: Disable virqfds on cleanup - scsi: core: Fix scsi_mode_sense() buffer length handling - scsi: core: Reshuffle response handling in scsi_mode_sense() - scsi: core: Fixup calling convention for scsi_mode_sense() - dm: call the resume method on internal suspend - tty: fix read of tty->pgrp outside of ctrl_lock - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve- !6313 fixup CVE-2024-26908 - !6447 can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock - !6309 v5 ima: Avoid blocking in RCU read-side critical section - !6405 wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() - !6466 bpf: Fix hashtab overflow check on 32-bit arches - !6396 tracing/trigger: Fix to return error if failed to alloc snapshot - !6278 Bluetooth: Avoid potential use-after-free in hci_error_reset - bpf: Fix hashtab overflow check on 32-bit arches - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock - !6203 ALSA: usb-audio: fix null pointer dereference on pointer cs_desc - !6292 aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts - !6301 v2 tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() - wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() - !6266 usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - tracing/trigger: Fix to return error if failed to alloc snapshot - !6290 CVE-2024-24861 - x86/xen: Add some null pointer checking to smp.c - ima: Avoid blocking in RCU read-side critical section - !6269 scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() - !6276 wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() - !6277 gtp: fix use-after-free and null-ptr-deref in gtp_newlink() - !6275 arp: Prevent overflow in arp_req_get(). - !6280 scsi: advansys: Fix kernel pointer leak - !6177 arm64/mpam: Not allowed setting 0 to cache portion bit mask - !6176 arm64/mpam: return EOPNOTSUPP when changing rmid of monitor group or resource group with monitor - aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts - media: xc4000: Fix atomicity violation in xc4000_get_frequency - !6075 Fix CVE-2024-26764 - scsi: advansys: Fix kernel pointer leak - Bluetooth: Avoid potential use-after-free in hci_error_reset - gtp: fix use-after-free and null-ptr-deref in gtp_newlink() - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach - arp: Prevent overflow in arp_req_get(). - !6084 netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() - usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - !6246 ubi: Check for too small LEB size in VTBL code - ubi: Check for too small LEB size in VTBL code - ALSA: usb-audio: fix null pointer dereference on pointer cs_desc - arm64/mpam: Not allowed setting 0 to cache portion bit mask - arm64/mpam: return EOPNOTSUPP when changing rmid of monitor group or resource group with monitor - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio- !6231 v2 drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() - !6083 can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) - !6160 net/sched: act_mirred: don't override retval if we already lost the skb - drm/vkms: call drm_atomic_helper_shutdown before drm_dev_put() - !6152 Fix CVE-2024-26812 - !6139 iavf: free q_vectors before queues in iavf_disable_vf - !6164 CVE-2021-47194 - !6123 xen/events: close evtchn after mapping cleanup - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type - net/sched: act_mirred: don't override retval if we already lost the skb - vfio/pci: Create persistent INTx handler - vfio: Introduce interface to flush virqfd inject workqueue - !6053 net: ip_tunnel: prevent perpetual headroom growth - !6002 KVM: s390: vsie: fix race during shadow creation - iavf: free q_vectors before queues in iavf_disable_vf - !6102 Fix CVE-2024-27437 - !6070 Fix CVE-2024-26686 - !6049 wifi: mac80211: fix race condition on enabling fast-xmit - !5916 ext4: fix double-free of blocks due to wrong extents moved_len - xen/events: close evtchn after mapping cleanup - !6099 vfio/pci: Lock external INTx masking ops - !6032 gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() - !5899 dm-crypt: don't modify the data when using authenticated encryption - vfio/pci: Disable auto-enable of exclusive INTx IRQ - genirq: Add IRQF_NO_AUTOEN for request_irq/nmi() - vfio/pci: Lock external INTx masking ops - !6042 nilfs2: fix data corruption in dsync block recovery for small block sizes - !6030 Fix CVE-2024-26685 - !6015 btrfs: don't drop extent_map for free space inode on write error - !5963 btrfs: dev-replace: properly validate device names - can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of lock_task_sighand() - fs/proc: do_task_stat: use __for_each_thread() - exit: Use the correct exit_code in /proc//stat - net: ip_tunnel: prevent perpetual headroom growth - wifi: mac80211: fix race condition on enabling fast-xmit - !5999 mm/swap: fix race when skipping swapcache - nilfs2: fix data corruption in dsync block recovery for small block sizes - !6019 net/sched: act_mirred: use the backlog for mirred ingress - !6010 PM / devfreq: Synchronize devfreq_monitor_[start/stop - !5846 ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() - !5994 ipv6: sr: fix possible use-after-free and null-ptr-deref - nilfs2: fix potential bug in end_buffer_async_write - nilfs2: fix buffer corruption due to concurrent device reads - !5951 RDMA/qedr: Fix qedr_create_user_qp error flow - net/sched: act_mirred: use the backlog for mirred ingress - btrfs: don't drop extent_map for free space inode on write error - PM / devfreq: Synchronize devfreq_monitor_[start/stop] - !5961 fbdev: savage: Error out if pixclock equals zero - KVM: s390: vsie: fix race during shadow creation - mm/swap: fix race when skipping swapcache - ipv6: sr: fix possible use-after-free and null-ptr-deref - !5875 v3 CVE-2024-26771 - !5926 RDMA/srpt: Support specifying the srpt_service_guid parameter - btrfs: dev-replace: properly validate device names - fbdev: savage: Error out if pixclock equals zero - !5778 ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() - RDMA/qedr: Fix qedr_create_user_qp error flow - !5830 fbdev: sis: Error out if pixclock equals zero - RDMA/srpt: Support specifying the srpt_service_guid parameter - ext4: fix double-free of blocks due to wrong extents moved_len - dm-crypt: don't modify the data when using authenticated encryption - !5807 nilfs2: fix hang in nilfs_lookup_dirty_data_buffers() - dmaengine: ti: edma: Add some null pointer checks to the edma_probe - dmaengine: ti: edma: Fix error return code in edma_probe() - dmaengine: ti: edma: add missed operations - dmaengine: ti: edma: fix missed failure handling - ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() - fbdev: sis: Error out if pixclock equals zero - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers() - ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found()- !5874 scsi: hisi_sas: Update disk locked timeout to 7 seconds - scsi: hisi_sas: Update disk locked timeout to 7 seconds - !5841 fixup CVE-2024-26751 - !5834 CVE-2021-47144 - ARM: ep93xx: Add terminator to gpiod_lookup_table - drm/amd/amdgpu: fix refcount leak - !5796 netfilter: nft_limit: reject configurations that cause integer overflow - netfilter: nft_limit: reject configurations that cause integer overflow - !5755 sh: push-switch: Reorder cleanup operations to avoid use-after-free bug - !5767 v5 net: fec: fix the potential memory leak in fec_enet_init() - !5718 CVE-2024-26654 - net: fec: fix the potential memory leak in fec_enet_init() - !5722 btrfs: don't abort filesystem when attempting to snapshot deleted subvolume - sh: push-switch: Reorder cleanup operations to avoid use-after-free bug - !5727 fix CVE-2021-47101 - !5531 ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() - !5715 net: hns3: updates 2024.04.02 - !5710 v2 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() - asix: fix wrong return value in asix_check_host_enable() - asix: fix uninit-value in asix_mdio_read() - net: asix: fix uninit value bugs - btrfs: don't abort filesystem when attempting to snapshot deleted subvolume - !5700 sr9800: Add check for usbnet_get_endpoints - !5680 USB: usbfs: Don't WARN about excessively large memory allocations - !5679 fix CVE-2023-52587 - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs - ALSA: aica: Fix a long-time build breakage - !5713 v2 tipc: wait and exit until all work queues are done - net: hns3: update hns3 version to 24.3.1 - net: hns3: fix port vlan filter not disabled problem in dynamic vlan mode - !5696 NFS: Fix an Oopsable condition in __nfs_pageio_add_request() - tipc: wait and exit until all work queues are done - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() - !5702 ext4: Validate inode pa before using preallocation blocks - !5694 tipc: skb_linearize the head skb when reassembling msgs - ext4: Validate inode pa before using preallocation blocks - !5674 mac80211: fix locking in ieee80211_start_ap error path - !5672 arm64/mpam_ctrlmon: Update ctrl group config with rdtgrp's partid - sr9800: Add check for usbnet_get_endpoints - !5528 btrfs: do not BUG_ON in link_to_fixup_dir - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() - tipc: skb_linearize the head skb when reassembling msgs - !5522 md/raid5: fix atomicity violation in raid5_cache_count - USB: usbfs: Don't WARN about excessively large memory allocations - IB/ipoib: Fix mcast list locking - RDMA/IPoIB: Fix error code return in ipoib_mcast_join - mac80211: fix locking in ieee80211_start_ap error path - arm64/mpam: Allocate new partid for the created ctrl group - arm64/mpam_ctrlmon: Update ctrl group config with rdtgrp's partid - !5581 CVE-2023-52622 - !5658 v2 CVE-2021-47131 - !5645 [sync] PR-5493: arm64/mpam: Fix repeated enabling in mpam_enable() - !5559 fix CVE-2021-47173 - !5575 net: dsa: fix a crash if ->get_sset_count() fails - net/tls: Use RCU API to access tls_ctx->netdev - net/tls: Remove the context from the list in tls_device_down - tls: Fix context leak on tls_device_down - net/tls: Resolve KABI break when backport bugfix of CVE-2021-47131 - net/tls: Fix use-after-free after the TLS device goes down and up - net/tls: Replace TLS_RX_SYNC_RUNNING with RCU - !5625 i2c: i801: Don't generate an interrupt on bus reset - !5517 dm: revert partial fix for redundant bio-based IO accounting - arm64/mpam: Fix repeated enabling in mpam_enable() - !5481 jfs: fix array-index-out-of-bounds in dbAdjTree - !5572 mld: fix panic in mld_newpack() - !5565 tracing: Ensure visibility when inserting an element into tracing_map - !5571 v2 mm/mlock: return EINVAL for illegal user memory range in mlock - i2c: i801: Don't generate an interrupt on bus reset - !5587 Fix CVE-2021-47171 - !5579 mm: ksm: fix use-after-free kasan report in ksm_might_need_to_copy - !5573 Fix CVE-2021-47160 - !5564 serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' - !5560 drm/amdgpu: Fix a use-after-free - net: usb: fix possible use-after-free in smsc75xx_bind - net: usb: fix memory leak in smsc75xx_bind - ext4: avoid online resizing failures due to oversized flex bg - ext4: unify the type of flexbg_size to unsigned int - ext4: remove unnecessary check from alloc_flex_gd() - mm: ksm: fix use-after-free kasan report in ksm_might_need_to_copy - !5558 net: fujitsu: fix potential null-ptr-deref - !5556 NFC: nci: fix memory leak in nci_allocate_device - net: dsa: fix a crash if ->get_sset_count() fails - net: dsa: mt7530: fix VLAN traffic leaks again - net: dsa: mt7530: fix VLAN traffic leaks - mld: fix panic in mld_newpack() - mm/mlock: return EINVAL for illegal user memory range in mlock - tracing: Ensure visibility when inserting an element into tracing_map - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' - !5552 net/smc: remove device from smcd_dev_list after failed device_add() - !5290 crypto: algif_aead - Only wake up when ctx->more is zero - !5446 keys: safe concurrent user->{session,uid}_keyring access - drm/amdgpu: Fix a use-after-free - !5550 pciehp: clear p_slot->work.data after powering off a slot - usb: misc: fix improper handling of refcount in uss720_probe() - misc/uss720: fix memory leak in uss720_probe - !5515 netfilter: nf_tables: disallow timeout for anonymous sets - !5538 netfilter: nf_tables: disallow anonymous set with timeout flag - net: fujitsu: fix potential null-ptr-deref - NFC: nci: fix memory leak in nci_allocate_device - net/smc: remove device from smcd_dev_list after failed device_add() - pciehp: clear p_slot->work.data after powering off a slot - netfilter: nf_tables: disallow anonymous set with timeout flag - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() - btrfs: do not BUG_ON in link_to_fixup_dir - md/raid5: fix atomicity violation in raid5_cache_count - dm: revert partial fix for redundant bio-based IO accounting - netfilter: nf_tables: disallow timeout for anonymous sets - jfs: fix array-index-out-of-bounds in dbAdjTree - keys: safe concurrent user->{session,uid}_keyring access - crypto: af_alg - Work around empty control messages without MSG_MORE - crypto: af_alg - Fix regression on empty requests - crypto: algif_aead - Only wake up when ctx->more is zero- !5539 spi: spi-fsl-dspi: Fix a resource leak in an error handling path - !5542 round lts patches - !5520 scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan() - l2tp: pass correct message length to ip6_append_data - ipv6: Fix signed integer overflow in l2tp_ip6_sendmsg - spi: spi-fsl-dspi: Fix a resource leak in an error handling path - !5514 CVE-2021-47110 - !5497 llc: Drop support for ETH_P_TR_802_2. - !5498 llc: make llc_ui_sendmsg() more robust against bonding changes - !5490 tcp: add sanity checks to rx zerocopy - scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan() - x86/kvm: Do not try to disable kvmclock if it was not enabled - x86/kvm: Disable kvmclock on all CPUs on shutdown - !5502 pstore/ram: Fix crash when setting number of cpus to an odd number - !5477 Fixed CVE-2021-47112 - pstore/ram: Fix crash when setting number of cpus to an odd number - llc: make llc_ui_sendmsg() more robust against bonding changes - llc: Drop support for ETH_P_TR_802_2. - tcp: add sanity checks to rx zerocopy - !5479 jfs: fix cve-2023-52600 - !5478 jfs: fix array-index-out-of-bounds in diNewExt - !5485 nfsd: fix use-after-free due to delegation race - nfsd: fix use-after-free due to delegation race - !5281 printk: avoid deadlock in panic - jfs: fix uaf in jfs_evict_inode - JFS: fix memleak in jfs_mount - jfs: fix array-index-out-of-bounds in diNewExt - x86/kvm: Teardown PV features on boot CPU as well - !5465 wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() - !5361 btrfs: abort in rename_exchange if we fail to insert the second ref - !5254 tomoyo: fix UAF write bug in tomoyo_write_control() - !5321 UBSAN: array-index-out-of-bounds in dtSplitRoot - !5455 CVE-2021-47114 - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() - !5320 jfs: fix slab-out-of-bounds Read in dtSearch - ocfs2: issue zeroout to EOF blocks - ocfs2: fix zero out valid data - ocfs2: fix data corruption by fallocate - !5374 hwrng: core - Fix page fault dead lock on mmap-ed hwrng - !5418 [sync] PR-5317: KVM: s390: fix setting of fpc register - !5272 net/smc: fix illegal rmb_desc access in SMC-D connection dump - !5274 phonet/pep: refuse to enable an unbound pipe - !5359 CVE-2021-47121 and CVE-2021-47122 - KVM: s390: fix setting of fpc register - !5358 v5 CVE-2023-52595 - !5336 binder: fix race between mmput() and do_exit() - hwrng: core - Fix page fault dead lock on mmap-ed hwrng - btrfs: abort in rename_exchange if we fail to insert the second ref - net: caif: fix memory leak in caif_device_notify - net: caif: fix memory leak in cfusbl_device_notify - net: caif: add proper error handling - net: caif: added cfserl_release function - rt2x00: Fix kabi breakage in struct rt2x00lib_ops - wifi: rt2x00: restart beacon queue when hardware reset - rt2x00: clear up IV's on key removal - rt2x00: clear IV's on start to fix AP mode regression - rt2800: add pre_reset_hw callback - rt2800: do not nullify initialization vector data - binder: fix race between mmput() and do_exit() - UBSAN: array-index-out-of-bounds in dtSplitRoot - jfs: fix slab-out-of-bounds Read in dtSearch - printk: avoid deadlock in panic - phonet/pep: refuse to enable an unbound pipe - net/smc: fix illegal rmb_desc access in SMC-D connection dump - tomoyo: fix UAF write bug in tomoyo_write_control()- !5306 FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree - !5347 s390/ptrace: handle setting of fpc register correctly - !5309 drm/msm/dpu: Add mutex lock in control vblank irq - s390/ptrace: handle setting of fpc register correctly - !5267 llc: call sock_orphan() at release time - drm/msm/dpu: Add mutex lock in control vblank irq - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree - !5241 powerpc/lib: Validate size for vector operations - !5246 ceph: fix deadlock or deadcode of misusing dget() - !5268 crypto: algif_aead - fix uninitialized ctx->init - crypto: algif_aead - fix uninitialized ctx->init - llc: call sock_orphan() at release time - !5220 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add - !5196 drm: Don't unref the same fb many times by mistake due to deadlock handling - ceph: fix deadlock or deadcode of misusing dget() - powerpc/lib: Validate size for vector operations - !5210 v2 Fix CVE-2022-48629 and CVE-2022-48630 - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add - !5175 arm64/mpam: Fix use-after-free when deleting resource groups - !5163 nfc: nci: assert requested protocol is valid - !5172 CVE-2023-52502 for openEuler-1.0-LTS - crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ - crypto: qcom-rng - ensure buffer for generate is completely filled - drm: Don't unref the same fb many times by mistake due to deadlock handling - !5177 net: nfc: llcp: Add lock when modifying device list - !5157 RDMA/srp: Do not call scsi_done() from srp_abort() - net: nfc: llcp: Add lock when modifying device list - arm64/mpam: Fix use-after-free when deleting resource groups - arm64/mpam: remove kernfs_get() calls() and add kernfs_put() calls to prevent refcount leak - !5142 arm64/mpam: Expand the monitor number of the resctrl root - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() - nfc: constify several pointers to u8, char and sk_buff - nfc: nci: assert requested protocol is valid - RDMA/srp: Do not call scsi_done() from srp_abort() - arm64/mpam: Expand the monitor number of the resctrl root- !5133 CVE-2021-46926 - !5136 NFS: fs_context: validate UDP retrans to prevent shift out-of-bounds - !5052 v3 Remove WQ_FLAG_BOOKMARK flag - !5140 linux-4.19.y inclusion(4.19.305..4.19.307) part3 - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV - NFS: fs_context: validate UDP retrans to prevent shift out-of-bounds - ALSA: hda: intel-sdw-acpi: harden detection of controller - soundwire: intel: filter SoundWire controller device search - !5114 fix CVE-2023-52578 - !5119 crypto: scomp - fix req->dst buffer overflow - !5101 EDAC/thunderx: Fix possible out-of-bounds string access - !5094 HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect - crypto: scomp - fix req->dst buffer overflow - net: fix kabi check warning - net: Fix unwanted sign extension in netdev_stats_to_stats64() - net: bridge: use DEV_STATS_INC() - net: add atomic_long_t to net_device_stats fields - !5092 wifi: mac80211: fix potential key use-after-free - EDAC/thunderx: Fix possible out-of-bounds string access - !5095 linux-4.19.y inclusion(4.19.305..4.19.307) part 2 - !5090 drm: bridge/panel: Cleanup connector on bridge detach - !5088 uio_hv_generic: Fix a memory leak in error handling paths - !4952 scsi: qedf: Add pointer checks in qedf_update_link_speed() - !5076 v3 CVE-2021-47074 - netfilter: nft_compat: reject unused compat flag - ppp_async: limit MRU to 64K - inet: read sk->sk_family once in inet_recv_error() - bonding: remove print in bond_verify_device_path - af_unix: fix lockdep positive in sk_diag_dump_icons() - net: ipv4: fix a memleak in ip_setup_cork - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses - virtio_net: Fix Fix "‘%d’ directive writing between 1 and 11 bytes into a region of size 10" warnings - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk - SUNRPC: Fix a suspicious RCU usage warning - tcp: Add memory barrier to tcp_push() - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING - md: Whenassemble the array, consult the superblock of the freshest device - jbd2: correct the printing of write_flags in jbd2_write_superblock() - !5073 RDMA/rxe: Clear all QP fields if creation failed - !5077 RDMA/rxe: Return CQE error if invalid lkey was supplied - !5055 linux-4.19.y inclusion(4.19.305..4.19.307) part 1 - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect - wifi: mac80211: fix potential key use-after-free - drm: bridge/panel: Cleanup connector on bridge detach - uio_hv_generic: Fix a memory leak in error handling paths - of: unittest: Fix of_count_phandle_with_args() expected value message - of: unittest: Fix compile in the non-dynamic case - RDMA/rxe: Return CQE error if invalid lkey was supplied - nvme-loop: fix memory leak in nvme_loop_create_ctrl() - nvme-loop: don't put ctrl on nvme_init_ctrl error - !5060 net: fix possible store tearing in neigh_periodic_work() - RDMA/rxe: Clear all QP fields if creation failed - net: fix possible store tearing in neigh_periodic_work() - of: Fix double free in of_parse_phandle_with_args_map - pmdomain: core: Move the unused cleanup to a _sync initcall - tick/sched: Preserve number of idle sleeps across CPU hotplug events - acpi: property: Let args be NULL in __acpi_node_get_property_reference - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug - ACPI: LPIT: Avoid u32 multiplication overflow - audit: Send netlink ACK before setting connection in auditd_set - crypto: scompress - return proper error code for allocation failure - crypto: af_alg - Disallow multiple in-flight AIO requests - x86/mm/ident_map: Use gbpages only where full GB page should be mapped. - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again - !5046 usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear. - sched: remove wait bookmarks - filemap: remove use of wait bookmarks - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear. - !4929 scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command - !4752 block: add check that partition length needs to be aligned with block size - !4735 blk-mq: fix IO hang from sbitmap wakeup race - !3864 nvme: sanitize metadata bounce buffer for reads - !4946 NFC: st21nfca: Fix memory leak in device probe and remove - !4999 CVE-2021-46984 - !4938 crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init - !4990 vt: fix memory overlapping when deleting chars in the buffer - !4978 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() - !5018 ethernet:enic: Fix a use after free bug in enic_hard_start_xmit - !4992 bnxt_en: Fix RX consumer index logic in the error path. - !4997 Fixed CVE-2023-52504 - !4982 i2c: img-scb: fix reference leak when pm_runtime_get_sync fails - !4983 net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send - !4995 mpam/mpam_ctrlmon: update monitor config with its parent's ctrl_val - !4974 arm64/mpam: set default feedback of last_cmd_status interface as null string - !4975 arm64/mpam: support resctrl fs to show mounting option - !4973 arm64/mpam: Skip updates of unrelated ctrl type - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit - !4996 soundwire: stream: fix memory leak in stream config error path - !4817 v2 io_uring: fix overflows checks in provide buffers - kyber: fix kabi broken in ->bio_merge() - kyber: fix out of bounds access when preempted - x86/alternatives: Disable KASAN in apply_alternatives() - soundwire: stream: fix memory leak in stream config error path - mpam/mpam_ctrlmon: update monitor config with its parent's ctrl_val - bnxt_en: Fix RX consumer index logic in the error path. - !4969 CVE-2021-46990 - vt: fix memory overlapping when deleting chars in the buffer - !4945 ieee802154: ca8210: Fix a potential UAF in ca8210_probe - !4944 perf/x86/lbr: Filter vsyscall addresses - !4967 i2c: xiic: fix reference leak when pm_runtime_get_sync fails - !4970 binder: fix async_free_space accounting for empty parcels - !4919 v2 HID: usbhid: fix info leak in hid_submit_ctrl - !4980 net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg - net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg - !4949 CVE-2021-47024 - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() - arm64/mpam: support resctrl fs to show mounting option - arm64/mpam: set default feedback of last_cmd_status interface as null string - arm64/mpam: Skip updates of unrelated ctrl type - binder: fix async_free_space accounting for empty parcels - powerpc/64s: Fix crashes when toggling entry flush barrier - i2c: xiic: fix reference leak when pm_runtime_get_sync fails - scsi: qedf: Add pointer checks in qedf_update_link_speed() - vsock/virtio: free queued packets when closing socket - vsock/virtio: discard packets only when socket is really closed - virtio_vsock: Fix race condition in virtio_transport_recv_pkt - NFC: st21nfca: Fix memory leak in device probe and remove - ieee802154: ca8210: Fix a potential UAF in ca8210_probe - perf/x86/lbr: Filter vsyscall addresses - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init - scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command - HID: usbhid: fix info leak in hid_submit_ctrl - io_uring: fix overflows checks in provide buffers - block: add check that partition length needs to be aligned with block size - blk-mq: fix IO hang from sbitmap wakeup race - nvme: sanitize metadata bounce buffer for reads- !4947 powerpc/64s: Fix pte update for kernel memory on radix - !4932 phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP - powerpc/64s: Fix pte update for kernel memory on radix - !4874 v2 net: openvswitch: limit the number of recursions from action sets - !4920 ARM: footbridge: remove personal server platform - !4887 KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU - !4918 v3 usb: hub: Guard against accesses to uninitialized BOS descriptors - !4936 i2c: validate user data in compat ioctl - i2c: validate user data in compat ioctl - !4898 platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios - !4879 KVM: Stop looking for coalesced MMIO zones if the bus is destroyed - !4869 Fix CVE-2021-46941 - phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP - !4904 i2c: sprd: fix reference leak when pm_runtime_get_sync fails - !4859 hfsplus: prevent corruption in shrinking truncate - !4877 i2c: Fix a potential use after free - ARM: footbridge: fix PCI interrupt mapping - !4888 v3 media: dvbdev: Fix memory leak in dvb_media_device_free() - usb: hub: Guard against accesses to uninitialized BOS descriptors - !4825 sched/membarrier: reduce the ability to hammer on sys_membarrier - !4882 Input: appletouch - initialize work before device registration - !4876 backport patch to fix CVE-2021-47077 - !4899 net: qualcomm: rmnet: fix global oob in rmnet_policy - i2c: sprd: fix reference leak when pm_runtime_get_sync fails - !4892 Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security - !4881 i2c: cadence: fix reference leak when pm_runtime_get_sync fails - net: qualcomm: rmnet: fix global oob in rmnet_policy - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios - !4865 Input: powermate - fix use-after-free in powermate_config_complete - !4860 apparmor: avoid crash when parsed profile name is empty - Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security - media: dvbdev: Fix memory leak in dvb_media_device_free() - KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU - Input: appletouch - initialize work before device registration - i2c: cadence: fix reference leak when pm_runtime_get_sync fails - KVM: Stop looking for coalesced MMIO zones if the bus is destroyed - i2c: Fix a potential use after free - ARM: 9064/1: hw_breakpoint: Do not directly check the event's overflow_handler hook - net: openvswitch: limit the number of recursions from action sets - usb: dwc3: core: Do not perform GCTL_CORE_SOFTRESET during bootup - usb: dwc3: core: balance phy init and exit - usb: dwc3: core: Do core softreset when switch mode - Input: powermate - fix use-after-free in powermate_config_complete - !4856 bus: qcom: Put child node before return - apparmor: avoid crash when parsed profile name is empty - hfsplus: prevent corruption in shrinking truncate - bus: qcom: Put child node before return - !4828 Drivers: hv: vmbus: Use after free in __vmbus_open() - !4806 v2 media: pvrusb2: fix use after free on context disconnection - !4777 drivers/amd/pm: fix a use-after-free in kv_parse_power_table - !4819 v2 fix CVE-2020-36782 - !4833 openvswitch: fix stack OOB read while fragmenting IPv4 packets - !4677 f2fs: fix to avoid dirent corruption - !4804 CVE-2023-52451 backport to 4.19 v2 - openvswitch: fix stack OOB read while fragmenting IPv4 packets - Drivers: hv: vmbus: Use after free in __vmbus_open() - !4778 v3 Revert "memcg: fix a UAF problem in drain_all_stock()" - sched/membarrier: reduce the ability to hammer on sys_membarrier - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter - !4812 parisc: Clear stale IIR value on instruction access rights trap - parisc: Clear stale IIR value on instruction access rights trap - media: pvrusb2: fix use after free on context disconnection - powerpc/pseries/memhp: Fix access beyond end of drmem array - powerpc/pseries/memhotplug: Quieten some DLPAR operations - !4758 binder: signal epoll threads of self-work - !4746 KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache - Revert "memcg: fix a UAF problem in drain_all_stock()" - drivers/amd/pm: fix a use-after-free in kv_parse_power_table - !4751 [sync] PR-4623: i2c: Optimized the value setting of maxwrite limit to fifo depth - 1 - !4707 mtd: Fix gluebi NULL pointer dereference caused by ftl notifier - !4686 mlxsw: spectrum_acl_tcam: Fix stack corruption - binder: signal epoll threads of self-work - !4710 CVE-2021-46904 for openEuler1.0 - i2c: hisi: Add clearing tx aempty interrupt operation - i2c: hisi: Optimized the value setting of maxwrite limit to fifo depth - 1 - !4671 uio: Fix use-after-free in uio_open - KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache - net: hso: fix NULL-deref on disconnect regression - net: hso: fix null-ptr-deref during tty device unregistration - usb: hso: check for return value in hso_serial_common_create() - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier - mlxsw: spectrum_acl_tcam: Fix stack corruption - f2fs: fix to avoid dirent corruption - uio: Fix use-after-free in uio_open- !4701 v2 mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path - !4684 v3 CVE-2023-52435 - mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path - net: Fix compile warning in skb_segment() - net: prevent mss overflow in skb_segment() - !4643 f2fs: explicitly null-terminate the xattr list - f2fs: explicitly null-terminate the xattr list- !4601 v2 xen-netback: don't produce zero-size SKB frags - xen-netback: don't produce zero-size SKB frags - !4583 net: hns3: fix a bug and modify the hns3 driver version - net: hns3: update hns3 version to 24.2.1 - net: hns3: fix tm port shapping of fibre port is incorrect after driver initialization - !4552 v4 CVE-2023-52340 - !4526 v2 fs:/dcache.c: fix negative dentry flag warning in dentry_free - ipv6: fix kabi broken in struct dst_ops - ipv6: Document that max_size sysctl is deprecated - ipv6: remove max_size check inline with ipv4 - !4538 fix kprobe reenter bug - arm64/openeuler_defconfig: add not set config to fix compiling error - tracing/kprobes: Do the notrace functions check without kprobes on ftrace - fs:/dcache.c: fix negative dentry flag warning in dentry_free- !4524 fix spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected- !4454 netfilter: nf_tables: reject QUEUE/DROP verdict parameters - netfilter: nf_tables: reject QUEUE/DROP verdict parameters - !4411 v2 drm/atomic: Fix potential use-after-free in nonblocking commits - !4412 v3 Save and restore msg_namelen in sock_sendmsg - net: Save and restore msg_namelen in sock_sendmsg - net: prevent rewrite of msg_name in sock_sendmsg() - !4399 net: dst: Optimized route gc - drm/atomic: Fix potential use-after-free in nonblocking commits - !4392 linux-4.19.y inclusion - !4369 mm/filemap: avoid buffered read/write race to read inconsistent data - net/dst: use a smaller percpu_counter batch for dst entries accounting - net: add a route cache full diagnostic message - net: check dev->gso_max_size in gso_features_check() - net: warn if gso_type isn't set for a GSO SKB - mm: fix unmap_mapping_range high bits shift bug - x86/alternatives: Sync core before enabling interrupts - mm/filemap: avoid buffered read/write race to read inconsistent data - !4360 net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve - !4320 io_uring/af_unix: disable sending io_uring over sockets - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve - io_uring/af_unix: disable sending io_uring over sockets- !4277 fs:/dcache.c: fix negative dentry limit not complete problem - !4288 net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv - !4299 smb: client: fix NULL deref in asn1_ber_decoder() - smb: client: fix NULL deref in asn1_ber_decoder() - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv - !4228 fix spinlock already unlocked in inet_csk_reqsk_queue_add' bug - fs:/dcache.c: fix negative dentry limit not complete problem - !4235 nfc: nci: fix possible NULL pointer dereference in send_acknowledge() - !4255 drm/amdgpu: Fix potential fence use-after-free v2 - !4209 dhugetlb: skip unexpected migration - drm/amdgpu: Fix potential fence use-after-free v2 - !4231 crypto: hisilicon/qm - drop unnecessary IS_ENABLE(CONFIG_NUMA) check - nfc: nci: fix possible NULL pointer dereference in send_acknowledge() - crypto: hisilicon/qm - drop unnecessary IS_ENABLE(CONFIG_NUMA) check - ipv6: init the accept_queue's spinlocks in inet6_create - tcp: make sure init the accept_queue's spinlocks once - !4212 netlink: fix potential sleeping issue in mqueue_flush_file - netlink: fix potential sleeping issue in mqueue_flush_file - dhugetlb: skip unexpected migration - dhugetlb: introduce page_belong_to_dynamic_hugetlb() function - !3944 time: Handle negative seconds correctly in timespec64_to_ns() - !3943 timerqueue: Use rb_entry_safe() in timerqueue_getnext() - !3942 efi/x86: Map the entire EFI vendor string before copying it - !4166 sched/fair: Fix qos_timer deadlock when cpuhp offline - sched/fair: Fix qos_timer deadlock when cpuhp offline - !4137 sctp: fix potential deadlock on &net->sctp.addr_wq_lock - sctp: fix potential deadlock on &net->sctp.addr_wq_lock - time: Handle negative seconds correctly in timespec64_to_ns() - timerqueue: Use rb_entry_safe() in timerqueue_getnext() - efi/x86: Map the entire EFI vendor string before copying it- !4101 netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval() - !2954 spi: phytium: fix phytium_spi_irq panic on boot - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval() - !4067 fix CVE-2022-48619 - !4080 rtnetlink: Reject negative ifindexes in RTM_NEWLINK - rtnetlink: Reject negative ifindexes in RTM_NEWLINK - Revert "rtnetlink: Reject negative ifindexes in RTM_NEWLINK" - !4065 smb: client: fix OOB in receive_encrypted_standard() - !4021 netfilter: nf_tables: Reject tables of unsupported family - Input: add bounds checking to input_set_capability() - smb: client: fix OOB in receive_encrypted_standard() - !4039 crypto: hisilicon/qm: fix several issues - !4025 crypto: hisilicon - replace 'smp_processor_id' with the raw version of the macro - !3980 vhost: use kzalloc() instead of kmalloc() followed by memset() - crypto: hisilicon/qm: fix several issues - crypto: hisilicon - replace 'smp_processor_id' with the raw version of the macro - netfilter: nf_tables: Reject tables of unsupported family - vhost: use kzalloc() instead of kmalloc() followed by memset() - spi: phytium: fix phytium_spi_irq panic on boot- !4006 crypto: hisilicon/sec2: fix memory use-after-free issue - crypto: hisilicon/sec2: fix memory use-after-free issue - !3923 net: bridge: multicast: fix UAF of net_bridge - net: bridge: multicast: fix UAF of net_bridge- !3768 iomap: add support to track dirty state of sub pages - !3845 netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() - !3847 nvmet: nul-terminate the NQNs passed in the connect command - !3863 linux-4.19.y inclusion(4.19.299..4.19.303) part2 - team: Fix use-after-free when an option instance allocation fails - packet: Move reference count in packet_sock to atomic_long_t - tcp: do not accept ACK of bytes we never sent - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit() - ipv6: fix potential NULL deref in fib6_add() - ipv4: Correct/silence an endian warning in __ip_do_redirect - net: sched: fix race condition in qdisc_graft() - macvlan: Don't propagate promisc change to lower dev in passthru - ppp: limit MRU to 64K - tty: Fix uninit-value access in ppp_sync_receive() - net: annotate data-races around sk->sk_dst_pending_confirm - net: annotate data-races around sk->sk_tx_queue_mapping - !3862 linux-4.19.y inclusion(4.19.299..4.19.303) part1 - ring-buffer: Fix memory leak of free page - arm64: mm: Always make sw-dirty PTEs hw-dirty in pte_modify - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation - Revert "PCI: acpiphp: Reassign resources on bridge if necessary" - x86/CPU/AMD: Check vendor in the AMD microcode callback - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare() - audit: don't take task_lock() in audit_exe_compare() code path - nvmet: nul-terminate the NQNs passed in the connect command - netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() - !3823 [sync] PR-3822: ext4: fix kernel BUG in 'ext4_write_inline_data_end()' - ext4: fix kernel BUG in 'ext4_write_inline_data_end()' - !3803 net/sched: cbs: Fix not adding cbs instance to list - net/sched: cbs: Fix not adding cbs instance to list - !3770 ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() - ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() - iomap: add support to track dirty state of sub pages - !3757 Fix bugs from LTS patches - devcoredump: Send uevent once devcd is ready - devcoredump : Serialize devcd_del work - driver core: Release all resources during unbind before updating device links - !3716 appletalk: Fix Use-After-Free in atalk_ioctl - !3667 net/rose: Fix Use-After-Free in rose_ioctl - appletalk: Fix Use-After-Free in atalk_ioctl - net/rose: Fix Use-After-Free in rose_ioctl- !3660 atm: Fix Use-After-Free in do_vcc_ioctl - !3687 Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg - Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg - !3672 smb: client: fix potential OOB in smb2_dump_detail() - !3671 smb: client: fix OOB in smbCalcSize() - !3627 jbd2: fix soft lockup in journal_finish_inode_data_buffers() - !3189 fs: don't audit the capability check in simple_xattr_list() - smb: client: fix potential OOB in smb2_dump_detail() - smb: client: fix OOB in smbCalcSize() - !3555 net: check vlan filter feature in vlan_vids_add_by_dev() and vlan_vids_del_by_dev() - atm: Fix Use-After-Free in do_vcc_ioctl - !3592 CVE-2023-35827 patchset - !3449 Fix data-races around - jbd2: fix soft lockup in journal_finish_inode_data_buffers() - ravb: Fix races between ravb_tx_timeout_work() and net related ops - ravb: Fix use-after-free issue in ravb_tx_timeout_work() - net: check vlan filter feature in vlan_vids_add_by_dev() and vlan_vids_del_by_dev() - ip: Fix data-races around sysctl_ip_no_pmtu_disc. - ip: Fix data-races around sysctl_ip_fwd_update_priority. - fs: don't audit the capability check in simple_xattr_list()- !3607 Fix CVE-2023-6546 - !3606 perf/core: Fix CVE-2023-6931 - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux - tty: n_gsm: fix restart handling via CLD command - perf: Fix perf_event_validate_size() lockdep splat - perf: Fix perf_event_validate_size() - !3417 SCSI: hisi_raid: support SPxxx serial RAID/HBA controllers - !3531 Fix kernel panic occurs during ISO installation on the 20.03 SP3/SP4 - i2c: hisi: Only handle the interrupt of the driver's transfer - i2c: hisi: Only use the completion interrupt to finish the transfer - i2c: hisi: Avoid redundant interrupts - !3483 net: Remove acked SYN flag from packet in the transmit queue correctly - net: Remove acked SYN flag from packet in the transmit queue correctly - SCSI: hisi_raid: support SPxxx serial RAID/HBA controllers- !3426 Revert "hrtimers: Push pending hrtimers away from outgoing CPU earlier" - Revert "hrtimers: Push pending hrtimers away from outgoing CPU earlier" - Revert "cpu/hotplug: fix kabi breakage in enum cpuhp_state"- !3347 tun: avoid double free in tun_free_netdev - tun: avoid double free in tun_free_netdev - !3239 net: hns: fix fake link up - !3113 KVM: arm64: limit PMU version to PMUv3 for ARMv8.1 - !3281 LTS patch backport - !3122 nvme: retain split access workaround for capability reads - !3262 icmp: Fix a data-race around sysctl_icmp_errors_use_inbound_ifaddr. - net: fix kabi broken in struct netns_xfrm - xfrm: fix a data-race in xfrm_gen_index() - !3276 linux-4.19.y inclusion - !3263 workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() - !3267 x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses. - can: dev: can_restart(): fix race condition between controller restart and netif_carrier_on() - can: dev: can_restart(): don't crash kernel if carrier is OK - can: dev: move driver related infrastructure into separate subdir - ipv6: avoid atomic fragment on GSO packets - tcp_metrics: do not create an entry from tcp_init_metrics() - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics() - tcp_metrics: add missing barriers on delete - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb - tcp: fix excessive TLP and RACK timeouts from HZ rounding - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated() - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias() - ACPI: irq: Fix incorrect return value in acpi_register_gsi() - ext4: move 'ix' sanity check to corrent position - vfs: fix readahead(2) on block devices - overlayfs: set ctime when setting mtime and atime - quota: Fix slow quotaoff - mcb: remove is_added flag from mcb_device struct - sched,idle,rcu: Push rcu_idle deeper into the idle path - cgroup: Remove duplicates in cgroup v1 tasks file - x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs - workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() - icmp: Fix a data-race around sysctl_icmp_errors_use_inbound_ifaddr. - net: hns: update hns version to 23.12.1 - net: hns: fix fake link up on xge port - !3021 fix CFS bandwidth vs. hrtimer self deadlock - !3202 regmap: fix NULL deref on lookup - regmap: fix NULL deref on lookup - KVM: arm64: limit PMU version to PMUv3 for ARMv8.1 - arm64: cpufeature: Extract capped perfmon fields - nvme: retain split access workaround for capability reads - cpu/hotplug: fix kabi breakage in enum cpuhp_state - hrtimers: Push pending hrtimers away from outgoing CPU earlier- !3158 mm: don't let userspace spam allocations warnings - mm: don't let userspace spam allocations warnings - !2781 cpufreq: Abort show()/store() for half-initialized policies - !3118 sched: smart grid: check is active in affinity timer - sched: smart grid: check is active in affinity timer - !2977 Backport crypto bugfix - !3071 perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled - perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled - !3038 ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet - !3031 x86/mce/amd: Publish the bank pointer only after setup has succeeded - !3030 x86/mce/inject: Fix a wrong assignment of i_mce.status - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet - x86/mce/amd: Publish the bank pointer only after setup has succeeded - x86/mce/inject: Fix a wrong assignment of i_mce.status - crypto: fix kabi broken in struct crypto_instance - crypto: api - Use work queue in crypto_destroy_instance - cpufreq: make interface functions and lock holding state clear - cpufreq: Abort show()/store() for half-initialized policies- bug fix for enfs, when diconnect many sockets io is hang- arm64: cpufeature: Extract capped perfmon fields - KVM: arm64: limit PMU version to PMUv3 for ARMv8.1- !3000 [openEuler-1.0-LTS] add Phytium drivers CONFIG - arm64: config: add config for Phytium drivers - !2908 mm/migrate.c: fix potential indeterminate pte entry in migrate_vma_insert_page() - !2869 mm, memory_hotplug: update pcp lists everytime onlining a memory block - !2805 sched/fair: Refill bandwidth before scaling - !2804 signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal - !2960 Add script to check & update openeuler_defconfig - config: update openeuler_defconfig for arm64 - config: update openeuler_defconfig for x86 - kconfig: Add script to check & update openeuler_defconfig - kbuild: ensure full rebuild when the compiler is updated - mm/migrate.c: fix potential indeterminate pte entry in migrate_vma_insert_page() - mm, memory_hotplug: update pcp lists everytime onlining a memory block - sched/fair: Refill bandwidth before scaling - signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal- Revert "genirq: Increase the number of IRQ descriptors"- crypto: hisilicon - Add value profile support for kernel- !1935 [openEuler-1.0-LTS] Add Phytium optee driver support - !2895 netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one - !2873 Fix SAS start error with maxcpus=1 - genirq: Take the proposed affinity at face value if force==true - optee: add phytium optee driver - optee: model OP-TEE as a platform device/driver - netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one - irqchip/gic-v3: Always trust the managed affinity provided by the core code - genirq: Always limit the affinity to online CPUs - genirq/msi: Shutdown managed interrupts with unsatifiable affinities - !2508 [openEuler-1.0-LTS] jpeg: Add a Phytium JPEG Engine driver - !2522 [openEuler-1.0-LTS] Add support for Phytium SoC RNG - !2877 Revert "tcp: fix delayed ACKs for MSS boundary condition" - !2693 [openEuler-1.0-LTS] Add support for Phytium QSPI - !2402 [openEuler-1.0-LTS] Add Phytium w1 driver support - !2403 [openEuler-1.0-LTS] Add Phytium adc driver support - !1874 [openEuler-1.0-LTS] Add Phytium mailbox driver support - !2024 [openEuler-1.0-LTS] Add Phytium RTC driver support - !2682 [openEuler-1.0-LTS] Add support for Phytium MMC - !2671 [openEuler-1.0-LTS] phytium dwmac net driver - !2676 [openEuler-1.0-LTS] Add Phytium gpio driver support - !2604 [openEuler-1.0-LTS] Add support for Phytium SPI - !2540 [openEuler-1.0-LTS] Driver for the Phytium keypad port. - Revert "tcp: fix delayed ACKs for MSS boundary condition" - hwrng: Add support for Phytium SoC RNG - jpeg: Add a Phytium JPEG Engine driver - !2818 Fix memleak in disassociate_ctty() - !2810 drivers/gmjstcm: import CVE-2011-1160 CVE-2011-1162 fixes to tcm.c - drivers/gmjstcm: import CVE-2011-1160 CVE-2011-1162 fixes to tcm.c - rtc: add phytium rtc driver document - rtc: add rtc drivers for Phytium SOCs - gpio: add phytium gpio driver - dwmac:add phytium dwmac driver - mailbox:add phytium mailbox driver document - mailbox: add phytium mailbox driver - mmc: add phytium mmc driver DT binding docs - mmc: add support for Phytium MMC - tty: tty_jobctrl: fix pid memleak in disassociate_ctty() - Revert "tty: fix pid memleak in disassociate_ctty()" - spi: add phytium spi driver DT binding docs - spi: add phytium spi support - qspi: add phytium qspi driver DT binding docs - qspi: add support for Phytium QSPI controller - gpio: add phytium gpio driver document - dwmac:add phytium dwmac driver DT binding docs - adc: add phytium adc driver - adc: add phytium adc driver document - w1: add phytium w1 driver - w1: add phytium w1 driver document - KEYPAD: Driver for the Phytium keypad port. - KEYPAD: Document for the Phytium keypad port.- config: arm64: Enable dubugfs config of hisi sas - scsi: hisi_sas_v3_hw: Remove extra function calls for runtime pm - scsi: hisi_sas_v3_hw: Don't use PCI helper functions - scsi: hisi_sas: Check usage count only when the runtime PM status is RPM_SUSPENDING - scsi: hisi_sas: Work around build failure in suspend function - scsi: hisi_sas: Block requests before take debugfs snapshot - scsi: hisi_sas: Add slave_destroy interface for v3 hw - scsi: hisi_sas: Configure the initialization registers according to HBA model - scsi: hisi_sas: Increase debugfs_dump_index after dump is completed - scsi: hisi_sas: Ensure all enabled PHYs up during controller reset - scsi: hisi_sas: Exit suspending state when usage count is greater than 0 - scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id - Revert "scsi: hisi_sas: Disable SATA disk phy for severe I_T nexus reset failure" - scsi: hisi_sas: Disable-SATA-disk-phy-for-severe-I_T-nexus reset failure - scsi: hisi_sas: Use abort task set to reset SAS disks when discovered - scsi: hisi_sas: Undo RPM resume for failed notify phy event for v3 HW - scsi: hisi_sas: Fix rescan after deleting a disk - scsi: hisi_sas: Modify v3 HW SSP underflow error processing - scsi: hisi_sas: Fix phyup timeout on FPGA - scsi: hisi_sas: Prevent parallel controller reset and control phy command - scsi: hisi_sas: Limit users changing debugfs BIST count value - scsi: hisi_sas: Use autosuspend for the host controller - scsi: hisi_sas: Keep controller active between ISR of phyup and the event being processed - scsi: hisi_sas: Add more logs for runtime suspend/resume - scsi: hisi_sas: Wait for phyup in hisi_sas_control_phy() - scsi: hisi_sas: Initialise devices in .slave_alloc callback - scsi: hisi_sas: Speed up error handling when internal abort timeout occurs - scsi: hisi_sas: Reset controller for internal abort timeout - scsi: hisi_sas: Include HZ in timer macros - scsi: hisi_sas: Run I_T nexus resets in parallel for clear nexus reset - scsi: hisi_sas: Put a limit of link reset retries - scsi: hisi_sas: Print SATA device SAS address for soft reset failure - scsi: hisi_sas: Warn in v3 hw channel interrupt handler when status reg cleared - scsi: hisi_sas: Directly snapshot registers when executing a reset - scsi: hisi_sas: Call sas_unregister_ha() to roll back if .hw_init() fails - scsi: hisi_sas: Print SAS address for v3 hw erroneous completion print - scsi: hisi_sas: Add trace FIFO debugfs support - scsi: hisi_sas: Enable debugfs support by default - scsi: hisi_sas: Remove deferred probe check in hisi_sas_v2_probe() - scsi: hisi_sas: use threaded irq to process CQ interrupts - scsi: hisi_sas: Remove preemptible() - scsi: hisi_sas: Move debugfs code to v3 hw driver - scsi: hisi_sas: Reduce some indirection in v3 hw driver - scsi: hisi_sas: Fix up probe error handling for v3 hw - scsi: hisi_sas: Recover PHY state according to the status before reset - scsi: hisi_sas: Add device link between SCSI devices and hisi_hba - scsi: hisi_sas: Add check for methods _PS0 and _PR0 - scsi: hisi_sas: Add controller runtime PM support for v3 hw - scsi: hisi_sas: Switch to new framework to support suspend and resume - scsi: hisi_sas: Code style cleanup - scsi: hisi_sas: Add missing newlines - scsi: hisi_sas: Add BIST support for fixed code pattern - scsi: hisi_sas: Add BIST support for phy FFE - scsi: hisi_sas: Make phy index variable name consistent - scsi: hisi_sas: Do not modify upper fields of PROG_PHY_LINK_RATE reg - scsi: hisi_sas: Modify macro name for OOB phy linkrate - scsi: hisi_sas: Remove one kerneldoc comment - scsi: hisi_sas: Do not reset phy timer to wait for stray phy up - scsi: hisi_sas: Stop returning error code from slot_complete_vX_hw() - scsi: hisi_sas: Add SAS_RAS_INTR0 to debugfs register name list - scsi: hisi_sas: Modify the commit information for DSM method - scsi: hisi_sas: Display proc_name in sysfs - scsi: hisi_sas: Fix build error without SATA_HOST - scsi: hisi_sas: Use dev_err() in read_iost_itct_cache_v3_hw() - scsi: hisi_sas: Add prints for v3 hw interrupt converge and automatic affinity - scsi: hisi_sas: Modify the file permissions of trigger_dump to write only - scsi: hisi_sas: Replace magic number when handle channel interrupt - scsi: hisi_sas: Stop converting a bool into a bool - scsi: hisi_sas: Return directly if init hardware failed - scsi: hisi_sas: Record the phy down event in debugfs - scsi: hisi_sas: Delete the debugfs folder of hisi_sas when the probe fails - scsi: hisi_sas: Add ability to have multiple debugfs dumps - scsi: hisi_sas: Add module parameter for debugfs dump count - scsi: hisi_sas: Allocate memory for multiple dumps of debugfs - scsi: hisi_sas: Add debugfs file structure for ITCT cache - scsi: hisi_sas: Add debugfs file structure for IOST cache - scsi: hisi_sas: Add debugfs file structure for ITCT - scsi: hisi_sas: Add debugfs file structure for IOST - scsi: hisi_sas: Add debugfs file structure for port - scsi: hisi_sas: Add debugfs file structure for registers - scsi: hisi_sas: Add debugfs file structure for DQ - scsi: hisi_sas: Add debugfs file structure for CQ - scsi: hisi_sas: Add timestamp for a debugfs dump - scsi: hisi_sas: Don't create debugfs dump folder twice - scsi: hisi_sas: Make three functions static - scsi: hisi_sas: fix spelling mistake "digial" -> "digital" - scsi: hisi_sas: Add hisi_sas_debugfs_alloc() to centralise allocation - scsi: hisi_sas: Remove some unused function arguments - scsi: hisi_sas: Remove redundant work declaration - scsi: hisi_sas: Remove hisi_sas_hw.slot_complete - scsi: hisi_sas: add debugfs auto-trigger for internal abort time out - scsi: hisi_sas: use devm_platform_ioremap_resource() to simplify code - scsi: hisi_sas: remove set but not used variable 'irq_value' - scsi: hisi_sas: Remove some unnecessary code - scsi: hisi_sas: Modify return type of debugfs functions - scsi: hisi_sas: Drop free_irq() when devm_request_irq() failed - scsi: hisi_sas: Drop SMP resp frame DMA mapping - scsi: hisi_sas: Drop kmap_atomic() in SMP command completion - scsi: hisi_sas: Snapshot AXI and RAS register at debugfs - scsi: hisi_sas: Snapshot HW cache of IOST and ITCT at debugfs - scsi: hisi_sas: Fix pointer usage error in show debugfs IOST/ITCT - scsi: hisi_sas: Make max IPTT count equal for all hw revisions - scsi: hisi_sas: Some misc tidy-up - scsi: hisi_sas: Use pci_irq_get_affinity() for v3 hw as experimental - scsi: hisi_sas: Fix losing directly attached disk when hot-plug - scsi: hisi_sas: Fix type casting and missing static qualifier in debugfs code - scsi: hisi_sas: No need to check return value of debugfs_create functions- Backport cpu turbo patches- genirq: Increase the number of IRQ descriptors - irqchip: gic-v3: Collection table support muti pages- net: hns3: Fix unreasonable modifications caused by rollback extension ringparam parameters - net: hns3: Fix ethtool_ Ops&gen_ Improper modification of kabi changes caused by adding members in the ops structure - net: hns3: Fix Kabi issue caused by ptp introducing gettimex64() - Fallback ethtool about nla_ Modification of kabi changes caused by the addition of new associations in the policy structure - net: hns3: Fallback Ethtool's modifications to extack - net: hns3: Fallback ethtool's modification of lane - net: hns3: HNAE3 framework add support for ROH client - net: hns3: add ROH MAC type definitions and support query MAC type - net: hns3: Add configuration of TM QCN error event - net: hns3: fix return value check bug of rx copybreak - net: hns3: add netdev reset check for hns3_set_tunable() - ethtool: mark netlink family as __ro_after_init - net: hns3: add max order judgement for tx spare buffer - net: hns3: fix ethtool tx copybreak buf size indicating not aligned issue - net: hns3: fix deadlock issue when externel_lb and reset are executed together - ethtool: Fix uninitialized number of lanes - ethtool: reset lanes when lanes is omitted - ethtool: limit bitset size - ethtool: fix application of verbose no_mask bitset - net: hns3: fix for not calculating TX BD send size correctly - NIC: hns3: fix kabi - ptp: deprecate gettime64() in favor of gettimex64() - net: hns3: add support for Hisilicon ptp sync device - net: hns3: sync linux kernel hns3 wol to openeuler - net: hns3: fix pointer cast to different type for wol - net: hns3: fix the HCLGE_OPC_WOL_CFG opcode id for wol - net: hns3: fix getting supported parameter from driver in hclge_set_wol - net: hns3: add supports pfc storm detection and suppression - net: hns3: debugfs add dump dscp map info - net: hns3: support debugfs for wake on lan - net: hns3: add debugfs support for interrupt coalesce - net: hns3: delete the hclge_cmd.c and hclgevf_cmd.c - net: hns3: refactor VF cmdq init and uninit APIs with new common APIs - net: hns3: refactor PF cmdq init and uninit APIs with new common APIs - net: hns3: create common cmdq init and uninit APIs - net: hns3: refactor VF cmdq resource APIs with new common APIs - net: hns3: refactor PF cmdq resource APIs with new common APIs - net: hns3: create common cmdq resource allocate/free/query APIs - net: hns3: refactor hclgevf_cmd_send with new hclge_comm_cmd_send API - net: hns3: refactor hclge_cmd_send with new hclge_comm_cmd_send API - net: hns3: fix setting wrong tx_timeout value issue - net: hns3: refactor hclge_mac_link_status_wait for interface reuse - net: hns3: add wait until mac link down - net: hns3: fix set cpu affinity when state down - net: hns3: restore user pause configure when disable autoneg - net: hns3: add tm flush when setting tm - net: hns3: fix the imp capability bit cannot exceed 32 bits issue - net: hns3: fix GRE checksum offload issue - net: hns3: fix strncpy() not using dest-buf length as length issue - net: hns3: add support config dscp map to tc - net: hns3: refactor hclge_update_desc_vfid for extension - net:ethtool Fix the Kabi problem is caused by the new FEC callback function in ethtool_ops - net:hns3 The kabi issue is resolved when the lane members are added to the ethtool_link_ksettings structure - net: hns3: add querying fec statistics - ethtool: add FEC statistics - ethtool: fec_prepare_data() - jump to error handling - ethtool: support FEC settings over netlink - ethtool: netlink bitset handling - net: hns3: avoid mult + div op in critical data path - net: hns3: add support to query and set lane number by ethtool - ethtool: Extend link modes settings uAPI with lanes - net: hns3: Resolved the kabi change issue caused by new members in the devlink structure - The kabi issue is resolved when the rx_buf_len extension ring is used to set parameters or obtain APIs - net: hns3: Fix for the compilation problem of hclge_comm_cmd - net: hns3: remove always exist devlink pointer check - net: hns3: add support for registering devlink for VF - net: hns3: add support for registering devlink for PF - net: hns3: fix output information incomplete for dumping tx queue info with debugfs - net: hns3: fix reset timeout when enable full VF - net: hns3: modify reset delay time to avoid configuration timeout - net: hns3: add support for getting GE port lanes - net: hns3: Use the correct style for SPDX License Identifier - net: hns3: support set/get VxLAN rule of rx flow director by ethtool - net: hns3: refactor for function hclge_fd_convert_tuple - net: hns3: PF supports to set and query lane_num by sysfs - net: ethtool: add VxLAN to the NFC API - net: hns3: add extend interface support for read and write phy register - net: hns3: add support set led - net: hns3: add support set mac state - net: hns3: add support detect port wire type - net: hns3: add support PF provides customized interfaces to detect port faults. - net: hns3: add support disable nic clock - net: hns3: add support config and query serdes lane status - net: hns3: add supports configure optical module enable - net: hns3: add support query the presence of optical module - net: hns3: disbable pfc en before the reset - net: hns3: support set pfc pause trans time - net: hns3: add support query port ext information - net: hns3: add support to get/set 1d torus param - net: hns3: add supports fast reporting of faulty nodes - net: hns3: add support configuring function-level interrupt affinity - net: hns3: add support clear mac statistics - net: hns3: add support customized exception handling interfaces. - net: hns3: fix miss L3E checking for rx packet - net: hns3: support wake on lan configuration and query - net: hns3: refactor the debugfs for dumping FD tcam - net: hns3: allocate fd counter for queue bonding - net: hns3: add queue bonding mode support for VF - net: hns3: add support for queue bonding mode of flow director - net: hns3: refine the handling for VF heartbeat - net: hns3: fix setting incorrect phy link ksettings for firmware in resetting process - net: hns3: add support for external loopback test - net: hns3: net: hns3: add querying and setting fec off mode from firmware - net: hns3: add querying and setting fec llrs mode from firmware - net: hns3: add querying fec ability from firmware - net: hns3: fix software vlan talbe of vlan 0 inconsistent with hardware - net: hns3: handle empty unknown interrupt for VF - net: hns3: add support for TX push mode - net: hns3: create new set of unified hclge_comm_cmd_send APIs - net: hns3: use struct hclge_desc to replace hclgevf_desc in VF cmdq module - net: hns3: create new cmdq hardware description structure hclge_comm_hw - net: hns3: fix incorrect components info of ethtool --reset command - net: hns3: add dql info when tx timeout - net: hns3: debugfs add drop packet statistics of multicast and broadcast for igu - net: hns3: remove the way to set tx spare buf via module parameter - net: hns3: add support to set/get rx buf len via ethtool for hns3 driver - ethtool: add support to set/get rx buf len via ethtool - net: hns3: add support to set/get tx copybreak buf size via ethtool for hns3 driver - ethtool: add support to set/get tx copybreak buf size via ethtool - ethtool: set device ring sizes with RINGS_SET request - ethtool: provide ring sizes with RINGS_GET request - ethtool: helper functions for netlink interface - ethtool: introduce ethtool netlink interface - ethtool: provide link mode names as a string set - ethtool: move string arrays into common file - ethtool: move to its own directory - net: hns3: allow configure ETS bandwidth of all TCs - net: hns3: fix some mac statistics is always 0 in device version V2 - net: hns3: sync rx ring head in echo common pull - net: hns3: fix ROCE base interrupt vector initialization bug - net: hns3: add support for pf querying new interrupt resources - net: hisilicon: fix hsn3_ethtool kernel-doc warnings - net: hns3: adjust string spaces of some parameters of tx bd info in debugfs - net: hns3: add more string spaces for dumping packets number of queue info in debugfs - net: hns3: fix data endian problem of some functions of debugfs - net: hns3: add error recovery module and type for himac - net: hns3: add new ras error type for roce - net: hns3: add update ethtool advertised link modes for FIBRE port when autoneg off - net: hns3: modify functions of converting speed ability to ethtool link mode - net: hns3: add support pause/pfc durations for mac statistics - net: hns3: device specifications add number of mac statistics - net: hns3: modify mac statistics update process for compatibility - net: hns3: schedule the polling again when allocation fails - net: hns3: fix for miscalculation of rx unused desc - net: hns3: PF enable promisc for VF when mac table is overflow - net: hns3: don't rollback when destroy mqprio fail - net: hns3: fix hclge_dbg_dump_tm_pg() stack usage - xdp: Fixed an issue where the trace_mem_disconnect function cannot find the definition. - net: hns3: fix the max tx size according to user manual - net: hns3: disable sriov before unload hclge layer - net: hns3: add limit ets dwrr bandwidth cannot be 0 - net: hns3: fix always enable rx vlan filter problem after selftest - net: hns3: fix show wrong state when add existing uc mac address - net: hns3: do not allow call hns3_nic_net_open repeatedly - net: hns3: optimize the rx page reuse handling process - net: hns3: fix misuse vf id and vport id in some logs - net: hns3: make hclgevf_cmd_caps_bit_map0 and hclge_cmd_caps_bit_map0 static - net: hns3: remove unnecessary spaces - net: hns3: add some required spaces - net: hns3: clean up a type mismatch warning - net: hns3: refine function hns3_set_default_feature() - net: hns3: uniform parameter name of hclge_ptp_clean_tx_hwts() - net: hnss3: use max() to simplify code - net: hns3: refine function hclge_dbg_dump_tm_pri() - net: hns3: reconstruct function hclge_ets_validate() - net: hns3: reconstruct function hns3_self_test - net: hns3: initialize each member of structure array on a separate line - net: hns3: add required space in comment - net: hns3: remove unnecessary "static" of local variables in function - net: hns3: don't config TM DWRR twice when set ETS - net: hns3: add new function hclge_get_speed_bit() - net: hns3: refactor function hclgevf_parse_capability() - net: hns3: refactor function hclge_parse_capability() - net: hns3: uniform type of function parameter cmd - net: hns3: merge some repetitive macros - net: hns3: package new functions to simplify hclgevf_mbx_handler code - net: hns3: remove redundant param to simplify code - net: hns3: use memcpy to simplify code - net: hns3: add hns3_state_init() to do state initialization - net: hns3: add macros for mac speeds of firmware command - net: hns3: fix GRO configuration error after reset - net: hns3: fix speed unknown issue in bond 4 - net: hns3: add support ethtool extended link state - net: hns3: add header file hns3_ethtoo.h - ethtool: add two link extended substates of bad signal integrity - docs: ethtool: Add two link extended substates of bad signal integrity - net: hns3: add support for triggering reset by ethtool - net: hns3: change the method of obtaining default ptp cycle - net: hns3: fix rx VLAN offload state inconsistent issue - net: hns3: add support for FD counter in debugfs - net: hns3: Fix a memory leak in an error handling path in 'hclge_handle_error_info_log()' - net: hns3: fix different snprintf() limit - net: hns3: use bounce buffer when rx page can not be reused - net: hns3: support dma_map_sg() for multi frags skb - net: hns3: add support to query tx spare buffer size for pf - net: hns3: use tx bounce buffer for small packets - net: hns3: add priv flags support to switch limit promisc mode - net: hns3: refactor for hns3_fill_desc() function - net: hns3: minor refactor related to desc_cb handling - net: hns3: fix a double shift bug - net: hns3: add support for PTP - net: hns3: refactor dev capability and dev spec of debugfs - net: hns3: use list_move_tail instead of list_del/list_add_tail in hclgevf_main.c - net: hns3: add error handling compatibility during initialization - net: hns3: update error recovery module and type - net: hns3: add support for imp-handle ras capability - net: hns3: add the RAS compatibility adaptation solution - net: hns3: add support for handling all errors through MSI-X - net: hns3: remove now redundant logic related to HNAE3_UNKNOWN_RESET - net: hns3: add log for workqueue scheduled late - net: hns3: add scheduling logic for error handling task - net: hns3: add a separate error handling task - net: hns3: use HCLGE_VPORT_STATE_PROMISC_CHANGE to replace HCLGE_STATE_PROMISC_CHANGED - net: hns3: fix user's coalesce configuration lost issue - net: hns3: add support for configuring interrupt quantity limiting - net: hns3: clear unnecessary reset request in hclge_reset_rebuild - net: hns3: cleanup inappropriate spaces in struct hlcgevf_tqp_stats - net: hns3: Trivial spell fix in hns3 driver - net: hns3: split out hclge_tm_vport_tc_info_update() - net: hns3: split function hclge_reset_rebuild() - net: hns3: remove redundant query in hclge_config_tm_hw_err_int() - net: hns3: remove redundant blank lines - net: hns3: remove unused code of vmdq - net: hns3: add support to query device specifications - net: hns3: add phy loopback support for imp-controlled PHYs - net: hns3: add ioctl support for imp-controlled PHYs - net: hns3: add get/set pause parameters support for imp-controlled PHYs - net: hns3: add support for imp-controlled PHYs - net:hns3 Fix KABI for The dev_version & caps element is added to the hnae3_ae_dev structure. - net:hns3 Fix KABI for deletion of hnae3_unic_private_info in hnae3_handle - net:hns3 Fix KABI for ethtools->supported_coalesce_params - net: hns3: split out hclgevf_cmd_send() - net: hns3: split out hclge_cmd_send() - net: hns3: refactor out hclgevf_get_rss_tuple() - net: hns3: refactor out hclge_get_rss_tuple() - net: hns3: refactor out hclge_set_vf_vlan_common() - net: hns3: use ipv6_addr_any() helper - net: hns3: refactor out hclgevf_cmd_convert_err_code() - net: hns3: refactor out hclge_cmd_convert_err_code() - net: hns3: remove unused macro definition - net: hns3: change hclge_query_bd_num() param type - net: hns3: change hclge_parse_speed() param type - net: hns3: clean up unnecessary parentheses in macro definitions - net: hns3: remove the shaper param magic number - net: hns3: add a structure for IR shaper's parameter in hclge_shaper_para_calc() - net: hns3: add support for TX hardware checksum offload - net: hns3: initialize the message content in hclge_get_link_mode() - net: hns3: add UDP segmentation offload support - net: hns3: use capabilities queried from firmware - net: hns3: add support to query device capability - net: hns3: add device version to replace pci revision - net: hns3: remove some unused macros - net: hns3: remove some unused codes in hns3_nic_set_features() - net: hns3: fix two coding style issues in hclgevf_main.c - net: hns3: remove two unused macros in hclgevf_cmd.c - net: hns3: remove an unused macro hclge_is_csq - net: hns3: fix a print format issue in hclge_mac_mdio_config() - net: hns3: remove some unused fields in struct hclge_dev - net: hns3: remove two duplicated register macros in hclgevf_main.h - net: hns3: remove unused struct hnae3_unic_private_info - net: hns3: remove some unused fields in struct hns3_nic_priv - net: hns3: modify an incorrect type in struct hclgevf_cfg_gro_status_cmd - net: hns3: modify an incorrect type in struct hclge_cfg_gro_status_cmd - net: hns3: refactor hclge_query_bd_num_cmd_send() - net: hns3: refactor hclge_config_tso() - net: hns3: remove a duplicated printing in hclge_configure() - net: hns3: modify two uncorrect macro names - net: hns3: remove a redundant register macro definition - net/hns: Remove custom driver version in favour of global one - net: hns3: clear port base VLAN when unload PF - net: hns3: reject unsupported coalescing params - net: hns3: modify an unsuitable log in hclge_map_ring_to_vector() - net: hns3: remove unused macros - net: hns3: adjust hns3_uninit_phy()'s location in the hns3_client_uninit() - net: hns3: fix compile warning without CONFIG_RFS_ACCEL - net: hns3: Use LLDP ethertype define ETH_P_LLDP - net: hns3: return 0 and print warning when hit duplicate MAC - net: hns3: make function hclge_set_all_vf_rst() static - net: phy: Move linkmode helpers to somewhere public - net: hns3: Add unlikely for buf_num check - net: hns3: Add default irq affinity - net: hns3: Only update mac configuation when necessary - net: hns3: Fix for loopback selftest failed problem- !2803 drivers/gmjstcm: fix a dev_err() call in spi tcm device probe - !2841 drm/qxl: fix UAF on handle creation - !2785 [openEuler-1.0-LTS] SCSI: SSSRAID: Support 3SNIC 3S5XX serial RAID/HBA controllers - drm/qxl: fix UAF on handle creation - !2809 bugfix for CVE-2022-45884 - media: dvb-core: Fix use-after-free due to race at dvb_register_device() - media: media/dvb: Use kmemdup rather than duplicating its implementation - media: dvbdev: Fix memleak in dvb_register_device - drivers/gmjstcm: fix a dev_err() call in spi tcm device probe - SCSI: SSSRAID: Support 3SNIC 3S5XX serial RAID/HBA controllers- config: arm64: Build HiSilicon SPI/SFC driver as module - spi: hisi-sfc-v3xx: drop unnecessary ACPI_PTR and related ifendif protection - spi: hisi-sfc-v3xx: fix potential irq race condition - spi: hisi-sfc-v3xx: add address mode check - spi: hisi-sfc-v3xx: extend version checking compatibility - spi: hisi-sfc-v3xx: add support for IRQ mode - spi: hisi-sfc-v3xx: factor out the bit definition of interrupt register - spi: hisi-sfc-v3xx: factor out bus config and transfer functions - spi: hisi-sfc-v3xx: factor out IO modes configuration - spi: Remove CONFIG_ prefix from Kconfig select - spi: hisi-sfc-v3xx: add error check after per operation - spi: HiSilicon v3xx: Use DMI quirk to set controller buswidth override bits - spi: HiSilicon v3xx: Properly set CMD_CONFIG for Dual/Quad modes - spi: Allow SPI controller override device buswidth - spi: Add HiSilicon v3xx SPI NOR flash controller driver - spi/acpi: avoid spurious matches during slave enumeration - spi/acpi: fix incorrect ACPI parent check - spi/acpi: enumerate all SPI slaves in the namespace - driver core: platform: return -ENXIO for missing GpioInt - driver: platform: Support parsing GpioInt 0 in platform_get_irq() - spi: spi-mem: Fix build error without CONFIG_SPI_MEM - spi: spi-mem: Add SPI_MEM_NO_DATA to the spi_mem_data_dir enum - sh: Replace CONFIG_MTD_M25P80 with CONFIG_MTD_SPI_NOR in sh7757lcr_defconfig - powerpc: Drop CONFIG_MTD_M25P80 in 85xx-hw.config - m68k: Drop CONFIG_MTD_M25P80 in stmark2_defconfig - mips: Drop CONFIG_MTD_M25P80 in various defconfig files - ARM: shmobile: defconfig: Refresh config CONFIG_MTD_M25P80 for v5.4-rc1 - mtd: spi-nor: core: Fix an issue of releasing resources during read/write - mtd: spi-nor: fix kernel-doc for spi_nor::spimem - mtd: spi-nor: Pointer parameter for CR in spi_nor_read_cr() - mtd: spi-nor: Pointer parameter for FSR in spi_nor_read_fsr() - mtd: spi-nor: Pointer parameter for SR in spi_nor_read_sr() - mtd: spi-nor: Stop compare with negative in Reg Ops methods - mtd: spi-nor: Prepend spi_nor_ to all Reg Ops methods - mtd: spi-nor: Fix direction of the write_sr() transfer - mtd: spi-nor: Move m25p80 code in spi-nor.c - mtd: spi-nor: always use bounce buffer for register read/writes - mtd: spi-nor: Add support for mx25u12835f - spi: add support for octal mode I/O data transfer- !2793 handle uninitialized numa nodes gracefully. - !2789 linux-4.19.y inclusion - arch/x86/mm/numa: Do not initialize nodes twice - mm: handle uninitialized numa nodes gracefully - mm, memory_hotplug: make arch_alloc_nodedata independent on CONFIG_MEMORY_HOTPLUG - !2713 Fix netfilter conntrack - !2651 sched/membarrier: fix missing local execution of ipi_sync_rq_state() - tcp: fix delayed ACKs for MSS boundary condition - tcp: fix quick-ack counting to count actual ACKs of new data - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() - team: fix null-ptr-deref when team device type is changed - af_unix: Fix data race around sk->sk_err. - af_unix: Fix data-races around sk->sk_shutdown. - af_unix: Fix data-race around unix_tot_inflight. - af_unix: Fix data-races around user->unix_inflight. - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr - net: read sk->sk_family once in sk_mc_loop() - skbuff: skb_segment, Call zero copy functions before using skbuff frags - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU - tcp: tcp_enter_quickack_mode() should be static - net: Avoid address overwrite in kernel_connect - md/raid1: fix error: ISO C90 forbids mixed declarations - md: raid1: fix potential OOB in raid1_remove_disk() - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer - autofs: fix memory leak of waitqueues in autofs_catatonic_mode - pstore/ram: Check start of empty przs during init - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() - fs: Fix error checking for d_hash_and_lookup() - !2767 crypto: hisilicon/qm - alloc reserve buffer to set and get xqc - crypto: hisilicon/qm - alloc reserve buffer to set and get xqc - !2760 fs: lockd: avoid possible wrong NULL parameter - !2164 Net: ethernet: Support 3snic 3s9xx network card - !2605 add CONFIG_NGBE for Wangxun 1G NIC for aarch64 - !1873 [openEuler-1.0-LTS] Add Phytium hda driver support - !2564 [openEuler-1.0-LTS] Add Phytium i2c driver support - !2636 kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - fs: lockd: avoid possible wrong NULL parameter - !2754 Sync LTS patches for openEuler-1.0-LTS - !2758 crypto: hisilicon - qm obtain the mailbox config at one time - crypto: hisilicon - qm obtain the mailbox config at one time - regmap: rbtree: Fix wrong register marked as in-cache when creating new node - regmap: rbtree: Use alloc_flags for memory allocations - !2730 PCI/IOV: Add pci_sriov_numvfs_lock to support enable pci sriov concurrently - !2722 net: sched: sch_qfq: Use non-work-conserving warning handler - !2650 sched/cpuacct: Fix charge cpuacct.usage_sys - PCI/IOV: Add pci_sriov_numvfs_lock to support enable pci sriov concurrently - net: sched: sch_qfq: Use non-work-conserving warning handler - arm64: config: add CONFIG_NGBE for Wangxun 1G NIC - netfilter: conntrack: fix infinite loop on rmmod - netfilter: conntrack: do not auto-delete clash entries on reply - netfilter: conntrack: allow insertion of clashing entries - netfilter: conntrack: split resolve_clash function - netfilter: conntrack: place confirm-bit setting in a helper - netfilter: conntrack: remove two args from resolve_clash - netfilter: conntrack: tell compiler to not inline nf_ct_resolve_clash - sched/membarrier: fix missing local execution of ipi_sync_rq_state() - sched/cpuacct: Fix charge cpuacct.usage_sys - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - hda: add phytium hda driver - hda: add phytium hda driver document - i2c: add Phytium i2c driver - i2c: add phytium i2c driver DT binding docs - Net: ethernet: Support 3snic 3s9xx network card- Add feature for nfs client support multipath- mpam: support ACPI for MPAM 2.0- perf metricgroup: Fix find_evsel_group() event selector - perf metricgroup: Fix for metrics containing duration_time - perf metricgroup: Fix system PMU metrics - perf metricgroup: Return error code from metricgroup__add_metric_sys_event_iter() - perf vendor events arm64: Fix incorrect Hisi hip08 L3 metrics - perf test: Fix metric parsing test - perf test: Fix msan uninitialized use. - perf test: Set NULL sentinel in pmu_events table in "Parse and process metrics" test - perf expr: Allow numbers to be followed by a dot - perf expr: Test parsing of floating point numbers - perf jevents: Add support for HiSilicon PA PMU aliasing - perf jevents: Add support for HiSilicon SLLC PMU aliasing - perf jevents: Add support for HiSilicon HHA PMU aliasing - perf jevents: Add support for HiSilicon DDRC PMU aliasing - perf jevents: Add support for HiSilicon L3C PMU aliasing - perf test: Add pmu-events test for aliases of hip09 ddrc pmu - perf vendor events arm64: Revise hip08 uncore events - perf test: Verify more event members in pmu-events test - perf jevents: Support ConfigCode - perf parse-events: Set numeric term config - perf test: Add pmu-events sys event support - perf jevents: Print SoC name per system event table - perf pmu: Make pmu_add_sys_aliases() public - perf test: Add more pmu-events uncore aliases - perf test: Re-add pmu-event uncore PMU alias test - perf pmu: Check .is_uncore field in pmu_add_cpu_aliases_map() - perf test: Test pmu-events core aliases separately - perf test: Factor out pmu-events alias comparison - perf test: Declare pmu-events test events separately - perf jevents: Relocate test events to cpu folder - perf test: Factor out pmu-events event comparison - perf jevents: Make build dependency on test JSONs - perf pmu: Save pmu name - perf pmu: Simplify arguments of __perf_pmu__new_alias - perf pmu: Add alias match method to fit pmu_name of HiSilicon DDRC - perf pmu: Fix alias matching - perf tools: Fix pattern matching for same substring in different PMU type - perf jevents: Add test for arch std events - perf metricgroup: Support adding metrics for system PMUs - perf metricgroup: Support printing metric groups for system PMUs - perf metricgroup: Split up metricgroup__print() - perf metricgroup: Fix metrics using aliases covering multiple PMUs - perf evlist: Change evlist__splice_list_tail() ordering - perf pmu: Add pmu_add_sys_aliases() - perf pmu: Add pmu_id() - perf jevents: Add support for system events tables - perf jevents: Add support for an extra directory level - perf jevents: Tidy error handling - perf jevents: Fix event syntax error caused by ExtSel - perf jevents: Fix getting maximum number of fds - perf jevents: Fix event code for events referencing std arch events - perf vendor events arm64: Add Hisi hip08 L3 metrics - perf vendor events arm64: Add Hisi hip08 L2 metrics - perf vendor events arm64: Add Hisi hip08 L1 metrics - perf pmu: Add pmu_events_map__find() function to find the common PMU map for the system - perf test: Handle metric reuse in pmu-events parsing test - perf metricgroup: Make find_metric() public with name change - perf metricgroup: Fix uncore metric expressions - perf test: Free formats for perf pmu parse test - perf metric: Do not free metric when failed to resolve - perf metric: Free metric when it failed to resolve - perf metric: Release expr_parse_ctx after testing - perf test: Fix memory leaks in parse-metric test - perf parse-event: Fix memory leak in evsel->unit - perf evlist: Fix cpu/thread map leak - perf metric: Fix some memory leaks - part 2 - perf metric: Fix some memory leaks - perf test: Free aliases for PMU event map aliases test - perf metricgroup: Fix typo in comment. - perf list: Do not print 'Metric Groups:' unnecessarily - perf metricgroup: Pass pmu_event structure as a parameter for arch_get_runtimeparam() - perf jevents: Add support for parsing perchip/percore events - perf jevents: Add new structure to pass json fields. - perf jevents: Make json_events() static and ditch jevents.h file - perf metric: Rename group_list to metric_list - perf metric: Rename struct egroup to metric - perf metric: Add metric group test - perf metric: Make compute_single function more precise - perf metric: Add recursion check when processing nested metrics - perf metric: Add DCache_L2 to metric parse test - perf metric: Add cache_miss_cycles to metric parse test - perf tests: Add parse metric test for frontend metric - perf tests: Add parse metric test for ipc metric - perf metric: Add events for the current list - perf metric: Compute referenced metrics - perf metric: Add referenced metrics to hash data - perf metric: Collect referenced metrics in struct metric_expr - perf metric: Collect referenced metrics in struct metric_ref_node - perf metric: Rename __metricgroup__add_metric to __add_metric - perf metric: Add add_metric function - perf metric: Add macros for iterating map events - perf metric: Add expr__del_id function - perf metric: Change expr__get_id to return struct expr_id_data - perf metric: Add expr__add_id function - perf metric: Fix memory leak in expr__add_id function - perf metric: Add 'struct expr_id_data' to keep expr value - perf metric: Rename expr__add_id() to expr__add_val() - perf pmu: Improve CPU core PMU HW event list ordering - perf pmu: List kernel supplied event aliases for arm64 - perf tools: Add test_generic_metric function - perf tools: Release metric_events rblist - perf tools: Factor out prepare_metric function - perf tools: Add metricgroup__parse_groups_test function - perf tools: Add fake_pmu to parse_group() function - perf parse: Factor out parse_groups() function - perf tests: Add another metric parsing test - perf pmu: Add a perf_pmu__fake object to use with __parse_events() - perf parse: Provide a way to pass a fake_pmu to parse_events() - perf tests: Factor check_parse_id function - perf tools: Add fake pmu support - perf tools: Fix term parsing for raw syntax - perf parse: Add 'struct parse_events_state' pointer to scanner - perf stat: Do not pass avg to generic_metric - perf tools: Allow r0x event syntax - perf parser: Add support to specify rXXX event with pmu - perf metricgroup: Remove unnecessary ',' from events - perf metricgroup: Add options to not group or merge - perf metricgroup: Remove duped metric group events - perf metricgroup: Order event groups by size - perf metricgroup: Delay events string creation - perf metricgroup: Use early return in add_metric - perf metricgroup: Always place duration_time last - perf metricgroup: Make 'evlist_used' variable a bitmap instead of array of bools - perf expr: Migrate expr ids table to a hashmap - perf test: Provide a subtest callback to ask for the reason for skipping a subtest - perf test: Improve pmu event metric testing - perf expr: Parse numbers as doubles - perf expr: Increase max other - perf expr: Allow ',' to be an other token - perf expr: Allow for unlimited escaped characters in a symbol - perf test: Test pmu-events aliases - perf pmu: Make pmu_uncore_alias_match() public - perf pmu: Add is_pmu_core() - perf test: Add pmu-events test - perf pmu: Refactor pmu_add_cpu_aliases() - perf jevents: Support test events folder - perf jevents: Add some test events - perf tests expr: Added test for runtime param in metric expression - perf metricgroups: Enhance JSON/metric infrastructure to handle "?" - perf metrictroup: Split the metricgroup__add_metric function - perf expr: Add expr_scanner_ctx object - perf expr: Add expr_ prefix for parse_ctx and parse_id - perf expr: Fix copy/paste mistake - perf expr: Fix memory leaks in metric bison - perf expr: Make expr__parse() return -1 on error - perf expr: Straighten expr__parse()/expr__find_other() interface - perf expr: Increase EXPR_MAX_OTHER to support metrics with more than 15 variables - perf expr: Move expr lexer to flex - perf expr: Add expr.c object - perf vendor events intel: Add NO_NMI_WATCHDOG metric constraint - perf metricgroup: Support metric constraint - perf util: Factor out sysctl__nmi_watchdog_enabled() - perf metricgroup: Factor out metricgroup__add_metric_weak_group() - perf jevents: Support metric constraint - perf tools: Update copy of libbpf's hashmap.c - perf tools: Sync hashmap.h with libbpf's - perf tools: Grab a copy of libbpf's hashmap - libbpf, hashmap: Fix undefined behavior in hash_bits - libbpf: Fix libbpf hashmap on (I)LP32 architectures - libbpf: Define __WORDSIZE if not available - libbpf, hashmap: Remove unused #include - libbpf: fix missing __WORDSIZE definition - perf parse-events: Fix an old style declaration - perf metricgroup: Fix printing event names of metric group with multiple events incase of overlapping events - tools bitmap: Implement bitmap_equal() operation at bitmap API - perf metricgroup: Fix printing event names of metric group with multiple events - perf list: Hide deprecated events by default - perf tools: Move ALLOC_LIST into a function - perf stat: Fix free memory access / memory leaks in metrics - perf vendor events arm64: Add some missing events for Hisi hip08 HHA PMU - perf vendor events arm64: Add some missing events for Hisi hip08 L3C PMU - perf vendor events arm64: Add some missing events for Hisi hip08 DDRC PMU - perf vendor events arm64: Fix Hisi hip08 DDRC PMU eventname - perf jevents: Add support for Hisi hip08 L3C PMU aliasing - perf jevents: Add support for Hisi hip08 HHA PMU aliasing - perf jevents: Add support for Hisi hip08 DDRC PMU aliasing - perf pmu: Support more complex PMU event aliasing - perf metricgroup: Support multiple events for metricgroup - perf metricgroup: Scale the metric result - perf pmu: Change convert_scale from static to global - perf metricgroup: Remove needless includes from metricgroup.h - perf metricgroup: Add missing list_del_init() when flushing egroups list - perf tools metric: Don't include duration_time in group - perf list: Avoid extra : for --raw metrics - perf jevents: Use nonlocal include statements in pmu-events.c - perf jevents: Remove unused variable - perf stat: Fix metrics with --no-merge - libbpf: add resizable non-thread safe internal hashmap - perf list: Output tool events - perf evsel: Support printing evsel name for 'duration_time' - perf stat: Implement duration_time as a proper event - perf stat: Revert checks for duration_time - perf stat: Implement duration_time as a proper event - perf stat: Revert checks for duration_time - perf tools: Fix legacy events symbol separator parsing - perf list: Display metric expressions for --details option - perf stat: Move 'metric_events' to 'struct perf_stat_config' - perf stat: Pass a 'struct perf_stat_config' argument to global print functions - perf stat: Pass 'struct perf_stat_config' argument to local print functions - perf stat: Add 'struct perf_stat_config' argument to perf_evlist__print_counters() - perf stat: Move STAT_RECORD out of perf_evlist__print_counters() - perf stat: Introduce perf_evlist__print_counters()- scsi: virtio_scsi: limit number of hw queues by nr_cpu_ids- spec: fix the problem that patches are not packaged in src.rpmdc-64g.compass-ci 1728461513 4.19.90-2410.1.0.0298.oe2003sp44.19.90-2410.1.0.0298.oe2003sp40-metadata_list-compact_tlv-kernel-tools-debuginfo-4.19.90-2410.1.0.0298.oe2003sp4.x86_640-metadata_list-compact-kernel-tools-debuginfo-4.19.90-2410.1.0.0298.oe2003sp4.x86_64debugusrbincentrino-decode-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debugcpupower-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debuggpio-event-mon-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debuggpio-hammer-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debugiio_event_monitor-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debugiio_generic_buffer-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debuglsgpio-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debuglsiio-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debugpowernow-k8-decode-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debugtmon-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debuglib64libcpupower.so.0.0.1-4.19.90-2410.1.0.0298.oe2003sp4.x86_64.debug/etc/ima/digest_lists.tlv//etc/ima/digest_lists//usr/lib//usr/lib/debug//usr/lib/debug/usr//usr/lib/debug/usr/bin//usr/lib/debug/usr/lib64/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/generic-hardened-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection cpioxz2x86_64-openEuler-linux-gnu  directoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=e96420ed30b4585dae02b524ba4b3fb7a8b29e16, for GNU/Linux 3.2.0, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=a21f2e6061c6f1a2e482fe9bb2ca0ec1e5fac901, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=7257cc67e55b0d963667eb7be18697d8451fe514, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=2cdc6bde2708529e2e28add4149cca7e847e262e, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=e5fd67e982b6e73b0ba714f0767dd53464e20a42, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=ad5cf783800b5a3ad07b84f77b627532ba532380, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=0087744119dbe392ea14a3b3cf8a0485efb76f64, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=8ff69f11c47ab7d036962593d772b17b4285a043, for GNU/Linux 3.2.0, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=0fd79a40622baaa493161266a4f207e3b4b25f5b, for GNU/Linux 3.2.0, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter \004, BuildID[sha1]=fadb957469c8e8cd8260bd2f6e32aed98c64179e, for GNU/Linux 3.2.0, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=2fc9ad9650cd296daa757f5f6398d82ad7ccbc23, with debug_info, not strippedDOųSutf-8484271b9a61fef15887d238c04ed08c7b35123f08655c58c99ace15143961708?p7zXZ !#,p] b2u Q{LRѶ&cֶ<+fNWwgC>a駈v@F$R'BTlpuk ?V&p:.]ZX JleFƃ5o8e:w; 1q4^ Qv,(Pw,a=iI&gsXE.j~W,[7Dl8@6wD_}m`(,s-t].M %2}ERY ŏ8!fq֟JCXR}:;0\}|$$HrP5G uKX/\]f}D uq;NODT fyl"5kJ]x y6M biڀxCxK0bA/hDZA7G>^cdìbgƳ$yM8 72(G4d 2zB4덄LqTURW8w@:]R_sF`%hZG\tHm@s 66zfp|L6)`Ρ%$7TǿU(vN$QbÏgK7D?aC%ELL_$HQr,TpZIa`]҂ -AADdlw'QX^p'#J㹖YBmm6!wldK4Ҿ$jufg)v7-ho-^iNM#L_ϥ IDb.iw:OQpqQ iP6 0\hYà<\*@vm%.PբC_֏(ԅǡnK>m7SCnQu_ z6K փtA)ր'U5gS.k&z,WȣkhA;]4j)[;EB-LU ?/%a jGN5@G淋 KLX0{f9P7|%2.E/>:I\4/)_i=&qo[RWz_#&qR筃8K YGgSPs#l#o˓'V>mħ!fMRN {|"w*hJ 2ik7GڪMae/ | ۶N_.(8_LK;k/qJ9g &gPd3GV4,yCQGΕAqw֩^ ~ҽxۀMtR*SN­0Adi3:SlZቱ Gh34 QQ7c )O&JL0]C0&| xj?}SZ$:U 8u Z:RaWjSTNI bPs)lEmSyY,Q1ϔ@V􈐏wW';U"/YDS`'_LEGG[}lmz+D "zt+J'O.UުЏ#Wz3Qy T}|2ΏmaRY{䍬.~!Y2R{DGǗD #C?0^=緞*^PBLlPc@ ٫љE<;ګͯ.ϕ3Hvm"gxd=Gϥ*gB|"~'zFloLʺ'Kp60.tA'  (p~;M4[ W' Jc.bH|%d|}YxG0 xAW ypy9I͖CCVGXwggrc^#1XFڵwr +uV)6!@R/[6,•z J>z ZtEg ;bV,&w|I,0nvv>0э-x-mFPޱ' b@XjjX|ǀ{' aanA|#_6]c̒пI@(&?g%3D?Fp$.&ر w'a~kW^@}P7FoPC^k8Uq T0xýgW1/eKX4pi'y71CMA9پ љ[%v OKg.2gzc#ke}~Z (P8mQLctRu^[UWg}Sr` !E* ^rrsh{,rrN" lQ5ʏᑐ\N9[6Z%9Gb іWZؾ;[lMݍ4 ׇֹ6"vܢ]ϡԙ-g6GMAY2W⠚e~ o?֊S0 "Q Kv3dRrD:jdhejK 9.r#įDC3i"oɇ_eim6Ǚi)\*bB* KR1GB,tr<Ҵ3^]7Hyum+=Կa꾅X)Y6jN, Aѩ(p2>9ъ Rx[mRشtSozpNpgțǠ (pr|M'V|D2|]x-h܋þava6QfEfYuo5î$]pE)D\j`Vz[oi&5+0!3H͠ ~btֹ$hMRu5^> {e,τRa\CPyJN3HH`2z~x1{O$h2[KXv>EU"( )&!QfJjr+LFUTA'T:%&?A넷N t ה5?|z$$2\͔}TЃg;f:K yG=%k2HL4&;R;!x̓fF cG懏@KnU2ZV}ÙΪo_Ou'*V¶ 8=,\>3LKh $V "#ԈuX kJp@`?O&hzSC yr>OvH ]Am^̸a7!CZo9 eIڳ'hI?̔<CdUQN/Sv?ŃyDj]UG"fk{MAT(yZ,6wbX3+~7}y QJFgdükz.=4Z>[>?y8?:. (2E 9}bbw,%>_Um FklqN#h?*;JqWAR z;=^q{D94'Do}4c104Za_ʚ!`"4yO5  &ztIh0p_tnY47dƲklG ?Yj@+ȯl<@br;[c#t7C-&ǹhzYqt뛲[ͯt\MXC7NpkOv/މ,U leq_ t)*Ȁel#\Gf @)Oy:aU3Q%HJp #@ X/TWW`4'@v8O-i0x'Hc6^}z(i0 L` tn C秖th{n=q /ZWV6O`X&r=h]T=qSNx4+P'7Gv=<3gfFeL"įR?ezU [ a#b`&/z,k&@ c%*5fAN2Q4+`?Y {#.#URs'`}{t_g(6<ҲHxaV 1LXG? .uP$4̊klD(=d(߱((E"g:(mAZlRZdkT׷|C я:!hj D35 '7 2SW4>@D4 ₥d#*{wjpbD:=K-*ke W uk[XhnfgJ`'86=.Ö%pc.7l[QF+LMs.xo{ux"AL6g_؞Fto ȈˀA{R\1~Vߋ/靊;ǵ:m{4OĻvXR{|{D[:5q[$BCwL4( ~A&0b*C(P*[[)?Hvtxa8Z/Ѿd&DT;x'Gw0bv;=WOd}syYaM+JQĦGx!w2oX=zU"KNZ$rzLfLPx *g`rٳ>G,*cJ`[OJS;˃U ,_f,{O5|^DNϑ*gQF<Qu f{LR?V߻l=ciGƋg7? GU_+ECBy~mC@} x,.U 5ÜX^ƀ&E>} 1HϙcͲF뇺e<.FO l<pGVFO{z~K[4D+IN qƧο$Wvz.*WR?eVO&Ԓk( /v4lc-=epvxl ^$B18K3{$Ux]`7aD3B\cMj{")Z1Q LwQ8A30` }JYE *2q:Q܆w9i\{0:d:lL˄&ˉYE,h`BRG5.j |l̻Y6):5ĎU=Hl--cACbM>qnD*HPuDߢe·oespAݫܧ=3V$Fiʶ s*)[EԽw"倬*dzrTϞ{k\iR=g%ׅ*"p7k=! 96NŽջbH9FtSV]`ʃ:Vmh%OEbiQPO3׳&g$r%_7s!c‡y;tNʛR|'y&r& -zPs 0`Īh-x>ZoxF+% T}"+%"h : +j ostGy% 񬙹xg~2gbҡVEQh +Mn;m#M>Mrr %ʷF ܔ:.;xvceR-Po>[Y: [~)?QD9b2E {k[-ƕM*`jtzo8O*YZ輂Z:-) I0*fCRj lOu 2.x\Kvs`WBmedwZV)v ݣz^啻A#8DW ; 0r=`"SDndUkLι|L@Uп2ΊSnjauDᣎ<,yiw/263 IyKBN>m>O/=Sl\kl,i^jؙ[)v`4ķL@Zuӏ- F-PZɨ7 lS?!yc+j *6'{r+;UYe/m+KAcY&:|c巉.dP%[f+LUsAf }*>)_ xLr,֍Ȫ|Î%,$bg>N K:?"ƴE,W툤f?LIkE68PgXbN}nܢ# .gp5PCz-MhJ㳜uQgSo|}4%]y^BV">dTKL}H3e Ҽ^0,,* ПW>j&&`ֳfޯ{ 8k8bI;'WǑGRq] 2ՠY1}S;an mNU~*ҭ"A ֬Uk IQ6~Е?d-= ַj&u`do,R(l=vd*$Qe>(XO@n;PG|^; AnW~hD'կ`\Zr\:k<6 ilsS\;y9'e8q흚zW7Uk_Wʫ.pRߵS-m nJodsbg*Yy2gU_yvh.o3Arhשᴭ[^-BQ]\B v3vnG:#Q|ӏÖKH d^qU؝nw{":7m$hy`kcx2z)!re)=$5POIV!E%X̯OfK ZP"~U4!: FG;U-YgpEy2޻<=ʏXcNlMfӔp&2ZwR~20dv@-v|uz,OJT̂KgS\5mdMd‹i2VU aqoU~VQUe/fšS.N )u)s c:-<+ݟV:7_F2zE|<  & 2 '0|nցKkqAJ*|{~ql_s|O؜P-XZd/yo!),}$TF*ݤPviF*7 Ȫ mizxאVD&W r%e&zym9fSefM yHXVIE2bqVoDL`0!=-%{cszxtO991&Yupe!DJ) $uo}QbP}e#޷mm f#_w&SɠHPZa{l&f8| ̯avAѰCUkadl"`ZG ?mH?xƒ#fW|~werhƐHt.|GbSx#R4=4D - `7ߥcV1'C*ho9T2U@[IZi:HA^nнiٕ K)ƅ '*նFng7Tȼ\xћMճSRtuG,6ۃ#umpP`0Fȕ~XpQH@TKBѿӾ"2[RAxѸjھtAx#'!>H%SX^ TLN+_^`R@U[r,fc['+y vDXuSK J'xq[Ҭz|Y1X{愦A;%ʴ|zx~Q4,i\@zj^DlW;*9B JutWHJ)jZ~q(YOwL AmǏqTPv jHv82P5fYv\EB+, T#i7vTb1$ 4:t)~ĭ@]XWf?svEINO s{fa2HvՏxDi C> 9m,&e4,`೏A囑%;rE4@;ժSXxTū,HM!*Ͳ@1I5S%r#m#Q~W 4K$x~r549TZ,` _p~2+mRe+܌MYo72i=eEʹuFm?,TNĢ ㌠A=Q"-MCP>VmBBe4 bu$V!a |!cAl-lrdzyd.)mHbN! $č!WD4*w$I~`AiP,1 0[sN,9srR#KoVGۤ F q 'O|w(R%g\+1V\x .!GAm3Fql6wPݏ>%4mk֭sXkS'T_z6wh6k s.ݚ^1ƼۖK?a@zOȋse"_)> F],&- W'I.%7K:‚ghB#q;]\i6'o(,-m1rDSUO2i|c^ & }[7]4[w@F)[|~'opoBe1 Zs,PrmDF!ޭzMB h[zXe|% l| XVŤ6_8EK/j6wH+p|( P Ջ|FbU_q[5U|0БxyQ\@`MAɴLmC|qd4<'}2<({0KȕZ}3KP h]) qf sÑWI}1m)morG8D#&1 lRmA=$OD5+v&٩H&GZWI/ {#A%jooH2aObȝ& tx7S jYw*&3!,5LTѿ4Pb+Rs'k1Ÿ7]ydBm]oOT٦`#)2Z{WG`W~awx[Ø ryޤ*琥5 dpmȷ c )k=,G,jQUA֤"o~99fH5:fπ{b8ŠKz܎?b+L0 ^|H:,!Jg,Ef咵-|N%UHfA<㞅ҝ1N JD=Y*X"=%p\Ӳ(naêvP?m Ѱ"y (xHz1lz'\D!]v<>8!fjc(F["eyXyz<3k,CV;6T; hv14S^$c+\N1!GwZIP{V-Xf:R{FcJRZDe)rL}zv_L Dqu:g![c ~k3IcF,頃j䄈5 y(bӃоh8[- iKi{ <*=,o< /@S3 C$_F/"c;$ %O݋E|f6/;Awg0y[8k7e6\>WY, y $}TrpF0: ِ Ȟ&E<' cM7S BgbŶ_̫B8fڃBHpFdPUt-[ϑZdr\v5?[m+'v3>y WGMvJܶȱ'u.'E$6w6v^er"=v&/w+yp¹|dX.$ z ÙlzGm{dy3iy07t* ! ڟ!CB7& }:^="ܦzN ]91qI5_8Y acyʵw另_AZ?Uߖ"vQyTܾR}Yw{WTIrރq@ۂ< 8I\m l- KM1mRȀOvQzru'F|V RptA{r\a9OO0}=o._gjJHzO}"@6EC]OB3ۏA;&4ܵ`9j-oO)}|⹊nܰSwJ.Ecr}l--}C!Cfq|ҿpiBgF`OFh!;X5 )O͂tx_LF_މ>2n5g9C0;& ^|:TFT۩԰ |BBe>A\oŘ:g8P8:r-ʾjOI֎9V"+XN7 5r΢Ԅ\* eo @K!)_(;MLhHCtY c=ƃd}xK`Cn]u5(@#\z6AruiծGHXNP}Ed4c&7.5]/Cg(omA,Oze ӸDvOv=n }l` *X\(XdWz6 B7e-jK/P~ae&&ql7E٫0t%ZOlDAoINvnGAEASVmLG:neh/Э4A>vG_c􍤚ů#pN'wJmճßrqC5cf5锎л|Æ0Y'/+4{U0qA+rz9W 9Fl XިV_ᯐ[҈ |yTU!:rUiHcjVؿ2csqODh|fO:bXe52ob>rNl- 9x (G :h<`sAp0uAw/dPnW K;: 6 ps8j?E*>*~ķfJ ~WKK_C5vxTtH*'Su[7]8R[.ӆnI. vob~p׊k{)1c|2|#'AjftxrJ'1nrla.? MUJ3F a}{ 44$k]Z'N6 xNsDQ:{s={PyV9d,V\* jb; &#x3鹅7ѮKRYu".>Yy:'K\ei]mDz(~%Z"+O+ R wЩ%IL7B?rG(VX)dL+fXSjuTyP9Qۛs5vޅNkgdP>|~55F*:o*21O.G[9;°8_+P{mYe;2;m/!&-gVP~ߩ/ s3b?sR2-ķƛ-:4MLHW`~Δ7K>B yb4< ##Ioknc0đyv~j.N*3bI'~A?83`X}v!-`k2<ں:/A $Cuya'b.@@Eßf^Y)=Vbe47@b*5Dumnmc3)%h#NRA{UہA.I%po7p$P%w+O ݑz_`|KcMr-7KJ}ߤqoVC~!ǍF' ͳSؤ1GʀPH~ནKݕ!u*! !'x"OzB_3pG.lW![=DoܪFN<yN7"4y3ڄ];ޛ0c8*>8pRϴG<*Z H68eRGp*@n8:xݩ!<#{y8J50 ~8aW_6tb}AIj.<.JvmPjwQZ1*FC' X\Ӗuh3YH(`\T/Nre;Z)ahMsT[uT8D:wVX ǡi--xeLD*4ZT:揽 o-6UqWP'ɭ{`9V}+ak(_3V5*ٵ˭W񌲻~n'uJQfzp܄9^ލ9&@X\i+0'@037ߢh+Q3=B ǁB[BY*|B3bO޶ַxpŝ{ Hpا1[&0vGNLb xK\-z+?>G7e@Na뾮UçIJ 9_,‘,%NWlsh'T.bj=yC`tm_T,4[xְ.)_p&➌GF[)Bv$ +yԉk/rya |[{M "R}e}u΃ӝ$yϴ٥X=_@Q҈ '{6Su+d|y%Sl`&Ja3W?,+}&ԅgѨA9knHo%+9\Q{ Rx7&YmdH!D J yC2݇bE6cmz+98Y,)5pZ gyGɂcP#\ՌP4QY u[qؔ[ȫK#oMCqv6)l<;wl:yb1AFrY,NQgir-+-gc89TZQ "lϻb1mwBG'ԯ3m(NMxGǘj%Wqv,F-\t[1jm7n06f[!-P,ʑ$Ř.- ")҇6`Vn:-4G.6Qwxp' }t2cS6l21`xDhezs¶+T$OzH^sz:y AKJ$ugcّz-\,72cy_&-BU-37qsSGִ%_v'?\Rqs\E>ȕ[T5>؆Cس ;?Q+n };1[ͥxZ~K߲+e$ڃl: 6=,#PjjD]βʚk;!^Bza/(@g>ZmaY,Sфh'|dȽ6St {=G e%D= <|6ˉVV$ٞitT+s>!W.gi\#uxejf<3/bq3P$47LGRw$"i7MtJ\#lFhT׀B,ƹjYY[-mH 3e 6qpk ېq)UX ƖSռc|Kq9bE.D`G%$'C@xpD'ے$ IXsڴjPmJ(dHAZ/O Z11K>*aG"|1Pt KB!tӍ4RG11TdzpqJwg'H[~pc22*gaF6DO-^'9;S V\]ݓ0-:}j w/=U{AuC/?pVvfG9[N4Ƣ$UROsi& |XJy8~64ܴr>>s (G voќ  л.=p`OY]Gj %k6ώagȀ:#V]H֮έ l W eq7Y9h |:%5'q?S7FBz[ ZFmcƏ;%ZnE!kG}gN̨5 J^9u))p^vh"B<۽KoRO L%%lwT\XAi3RimųUM0V8ɴVR]F̓u ^o:#Obz5yޜrP~sm ]sD"^+|2H)/_MN`vLnjvpRҰNݢ{m~7R]X7,zACG]zGdؽ젶2KSIk HSjr9c]@@OxI΃ B %ST\+)?90e>^X [f|d-byy_wGT2ohh*q{1c8'rlE9I]y\]衴Қ\08ʕ_ĩllܞVwLi qN*pk[f`7F$в(팰SG0&b?_՞FäVf7F熇׿nMjI.^UE){!861ޚBs>%3A|"zBAOg? ,b;N+94 Ьrf=V>&%? ezvf0OD #h8_ۋG%0U J''$r!OFEKܔʗxj+-{ɰTھmw8z;%1AMG omTqWeDbVe \Fl ܋EpyojuVAB j,w }Ifޜ\aZz" v5%-ڵotފO͈_'ӌkNZSe ;iN|~~1Gq mV(ycMsV3-VnWEpE' 8W>Oͬb>ih- <CKlm@00S&)ۢQh*L7NP&mM>B沅 ڊj2 S|J-ͶJZ1`KAZ8 9A7*}6kNcOQٛ _`BQK-"2rM8-qXVo3X2F"e3wEҞp1:jD?8@UzFr})G HD^kfl:h1IB)|_ôࡴèSQKDoID'{e IѼ 8rp+aJ|T`?H:赴MG;M+;OYfJh5/<[\PGFhgQ$|[%wYI+"ÿlz< EiÄh(uvHʻJ꿯1aQ;7-~mf_E)Å.K<௉O0]lo@h ۔Y9ēMg%.?)25\Ab؞I?U4ég>AL 'q̵ÜjԦ!Mt@kou`_E38p yf熶Gq.f?uUK)fJFEn3x}_P|7GA K:E˗s1 |qlgy-~TvTBg5'GKBp60-}sUp(C$+\¹n+8b+@ "Ȇm :u\Dm ;8K"Z+ 6o  ɀ4#pu@n,K n;f+GHD9Dxp ,k #;:nDM֌ʞ_mY؁I2ϣ5:YU,&9 LW{x-Pae!g{Ë00LaCLv VB=ᄞI h#'N6n-שP52ɁGA) B @7e5"Ʋ!ZP9%-rRKɵ5b- 9-LgWY*JH]e)ПF==@A^_(%D'>ۭ0e$ưbAമJ2r=k>̫͆_'(Qy7QzAq>;9v¿TA\36e4i_w!L܁Qy4(iÅysT~`#I sfuW{C ]ISrmJq0A%? 1EVR^b=lڎ %*s7OI,Ƶ}S:n@󀎜tSDEeɗ$jxS?sWk 457 RL "4SRXV!;ZXS0^S7w*$I/"p_Mh%O>5oVa*CqsT,55p$:F'f9I/ ]& c 2V.Z)Q KٍV(DiwM6KW(O\ L ͜c)Vzhdmǒ:|mza{ُ4:BȁZXrn dw^ 3RRkH2✉{\+բ,*+K ]aT8 {Ӳq d8܂-mnLW "nyߘb,τ{Sg~ z09܂Ļ`BB/KĤG #!͊yyp2 uz2,Hi]3$@CH}J{abjl̞~ti $ȗ7Q#ޞD1So: ]Y C2]H0Kˢcɼ3vJ6#T;JP3%8x0*i7@8wbH7[c2XNQ!oYaCŘ*e=r>զ|ٽ^YLxqjb(ݼܰxʿ.sa1Ci4]7%#FR',YLKlH\u6 ] UMɵiqK`ñp/:&cSNe>VA`wڎbLc詨A!T7 5 hm :!o0r["tXw=0 .h^;Rz!bN+`h$qOzڇ)7ͧ4%:.xyE 1 Z; ]R"}cds!dܣd-u?zb4+vGgr/$$^K(F᯾hV)lk=E3[vfVoPP".߱T9ЇMSC? /l؎,CXY}P~%s,T 0S=6b4gB=-IN&PON{cˤ=pwbXi7?M =oOdA$]akP>H*S >bǙ'psc3u\|Q*B,^LD_k`$Q_4jByǶUȩ掛E*eBݙ!ݵ'X #u-g*zY}5B^(JsLֶWќsn,ׄ,R:A[3R )b<*'Gfً%o;-AvQ_A {cOsbU p1qswp^pVU'F \@N>"^R?ʾ uh]X.ûۤ5A+&RQKGu-J}r(NR@o޼z+5'_i\m#yiuRalˉ k8؀,H q&l+XiJ+hC5u.oa:PO$$Ppk wәUĒ90/ 'P:1KٴRDO*V[;C_-Ybgc3#a:-ᬋ~^,Ro@ر1+(d:u>S~g#HȌh*Ay:O5\.UM^08So<6⤜9Mv<{@8Bމ ~8ώN qt >/C Pbq}R?{2 W&2s}:{:{zMߞ-WBgIÎ`BNv(' i<%#_ eW6 aVd 9` PE jG3φoOD2ȄNiQvoɈ¥m 7b:b_75h9'e`*E o~.eq)_YN˝>^>r[+ 5~]L. Gvޤ8lᩆ /*LUmJLJՃA#S!'i# ߤ'EL8x/Lk{b#Ȗ4̀Ͽ!7~ɣt3^@ЋyTd|j229 $UgmE?)8wGFٸ^t׌{PqQDSc{xUkj<~'W#@$SO U-'OJ)p:*6s.@^mAt P&W8D?,]. (U_7]CȄpîbN5ue-\lnF *+1󭻲WF2Zumr7B":ɂƄ? mr6Y^[9?1vD W^#${g!"5หKmO] Y.:Ui Ѭ&9m/]y鵯 Vv(DvCJ%#!E}p YfC*Op}|0|$35#eѽe ͍2ގ ؕ>Y^'@c=J=[?7=-"؜CTsao[~%3 UarvPıg @Vս|abYy"#$R%kN]`zlq# >"2Ϡ>f`&nT$ ѡ?捶% 2dHLz\E/%P ̝=1餳C.fOze̿}3L˾&hBJ׿OH4$ Mbnd9vDvU,~&4"UPYYR x `4u/9͔gUhϣ>͌| tڭ|XPcyp/v!av}b:q 1YMHPpSbHmr&#ϨƦ+^Hra7{S̏gBgW Gq!qoPѽQ-@{׮9墷?8fwb;a\)&cf̉ØE/!nb(Yèd[ibr(ߜ/n RQkrRI}'^8Tx aV9?|:^-MMV6g48Bñ"uyucec7)5n\h;l)"LD&Y!ZN9}YA:j&(vAMH, =!vtv0u۴־$M6jyy11-u6H@S~.9M[8V3"`g/f4Ɍ˧CGm饍Ck"`}IWl{!?#ճѩ#86p1·ϰ~ . hH2C/,9 ;>t{Wl20C=zbX u0)sAhpmw>  #rjQĊ-;_S_'ATm"Om$PyX?YIr-Ae̍B6f}Atc*x,6}%7FT"Ud 4[> !\a;.[иTC,rqsH'5LrZ_\)1fyqkQ2koч9{3HDG8JG-@hqlA9#aC_,? p,\ۀbre $G<. 8Ǧl;h(=!Zc>L}/̫0O Ƀa]N)@H(-yP8o$==uXw4r^MiigV߁#}>c񿫉c5%CSNYR6x]? ARp?*sG3θ0S53U+IAp֡j ʦcGѷ2WD8!ӠEʾYq<~ H ! ~Ό9ON4f{j7؝ @vN4AU1yo f.qcva]ع '0q?v,0y-)]·:$Lx@')enEĸ2NS|K4f[DsDOwSs8F{?o(`orfkg~*-|858$uoGMbcB{]~ҠEsQG4{Hp9f1et =܂l9ǼBS!I l+׻!܇neuTD,>ќ6x|{p}2ScǕxꈋ{uQˑI^dٹF\7l(8Nb?ayՊg$J4x](?Dk+^>i=|w~S̟FgɎPmt̅U ɿ- ZAJ &=s )*aUu~-x{ x(72Be_gFEstm]LI*4N %'r)(Ԇe*<nIǨEx 8mDœt' /A/oC_v~%78Kx%+xP`0JhA&Wex:&oess<#1akc y~'5msyۿ[,F^ 0p7m04X-jP3%lxG7a4 z+WLE)(ϪI~]`aiJƫ@mL$~˪h%Cbw9|:Ƭ?;* `;h7BC"%tB(?PJK+1n{)4 \r~pՁ=2db7>j8˧53sЪ+<jr$Y2 \\ڕq;y*6ŝTNW!MhɑWiCs\l*iCv[ m<e'S"/P)Xf%w|{0iht1+7ɥ1{wC"Y|Q8zD\N{%ah-/TWl0KR|u-tݵ* nY5hccqqf.C\2!X F]d+p3M -ZF2 @^Pރy2p~BD,y26z\"@ֹ38r{ς^2k%rȢ8̨$xS H5jQYBP`",{}d)e2~ȝ'\CpD_`0b0E}qވ;-)y‡+ 1qԴ,}ɸq^?X5?'E}4O5>oJAζEɑzA\\ НLW^X)+DR7M~eVCM)ޤ3W[|͸U`F Bru C~NRȼwş=YĖ8; L9"ۙ2%B  Z'\l#;դS}z-9U(P!{촦JED~"m(3k%*4 @iz'w@؅/aTĴ#x8]'@y?i 08lؐn^Pcuc ^{e>+asֿsUs* :F,݂L4F,෶nדCsAڐOd%ȕp!)@; nQd,V>J]y,Pc٣ [zpyf)Hf-]<%ɔ:OVr,mʝJc7p>{eĪ$m[EBr֐/ZpEur1sSS-17{9l0qwh0zZQd+(i3dd_JʂUyT$OoS~U\HUϬVI[T83NmQKL1@pyte۝[VgNtw0K|ZuI%bq5=XW& M -eP4^7DC>1&̈́Ee >i2Qv6@ޮ*8 &Ld|:2Nrd>"t,6qiAeacefoϜ:8|pyO,ݜj MSݖ9'c^ϹT䍥gO,s c^՘AGpw3:M|Du? K(9L- F;.{o 1*:O)u șpqd4aD VR Jpl=;Giւu%mD8 sⓡAVEg& hWP :١~5 ctx0[DKdJ|w'ᘢKjR>yxg a>чn?{wJ/sM8ݙ!8uXN+B\qXun;ac^5^G}ML #aANM!CkMp7D*I!ԏ;Urez]CY όJf̗b'gcTl[Ũx"Y>EeP e@}IBЪN-HFX$-Mg{?MoN&+ 'lWoxKX89LY3]qX |m.uGCʻOGY"!xZvaFrVSOqBtZۅoad AҸ`21QV8zdOcS:m҄KXa Dq%e`$ Htmi1hWO=yJEh;jVdVd,eac|k94sUmtoG79;ӻ*YQ+_ɐ/Ev?SlϲA[Ğ-fVV9xd*tK_e^؝BuMߋ\ϟN! ޯSp y[ɽtpnqxwyy%͖ÿS'MaXi3Dmwȳb<v}vF-{kh$(vyw)"PC2 Acdh mN_1g]0dI+kq߾<ԅ{\xA$7 ё%zLxeBw]E]sʅ{iu5UH3M  >X $@عѷV%X /Ð`Sj >AM䶄%)\"EGpoI}1"gAfJ!B0]$Xi\Caťʧ=轩[baT*6xklq}E-]vf)xx- 8,@Eў "GZxVOzMk W$-CUH4A"wԙ+RV77 nXC*mDeo ;)h--7 Tz|#7C`ƢxW'hXh/ެ;W)Zqg*/@Ai3ҽk O},Fma1Gj{0n92 鄬i#RDݎ4,+:;f:m ^н|L2Fy<'8AkAoQ҄`D&DǸUdnb;TuE03F &3u}(\Jh߱@:X ![-ڒ-)wyj\ЪiZJrzycZ^tβE6$ȱ| T z?G~7Zv /.M$f_C\eˏ?;tOƛH;ϩh!Hd캣d;/C = 2O)GDf@3w<+bkZNmҔ"; O>EolC fgSafN83"U>|#noX5%9!z"@VWJi׮EN2'4֩)ܶUmͅwr^=?(\a &VÔlbφ@v{qbB"Rv 3;jTnMXL1P">z?HyK<4WbOy^wVÕq>YវXݸD&$*Rc%1[OFqdqԝ;-U&H!W<҇qG* tEPꐋzWO'd8b4 h wN S0pF44LCY8oU=l8s&Mm,QׂY lK1U0E =6M$jq =5X:ȇZ[|4bn _blHLbu*S_ ypX$\7(quV7X[%ypI> 6uƢҸ(󰷀CѰ;s8?Ƣ"Lǖ)BS[O>.W*%g&Z!~Z,&xߥ>$=q3d~ ;xF\%TqIW LqŸI>gL1 DI;DN6c *!+c ?D^ a%gqxmlHԅ:c0Tk&PĬMlG55[#.m.x:R pǒfOY52e|.oOXRMҺD^0af!)U#5QT.j]JX~UFuq$6>=Kk@jY5׼vY5!™PpFa͐oK9cg,]2*Κ$qnM<>_@Pקԅ&epGn@s*ӈ"=Iߠ}# x 佷\`*?T[)KH&0&>ʱ|s[qoX>F鍳'Yj4cbaZbdu{(CI WWdZK? h^Ks1%PJ=Uߧ=ZTvXoBhduq^q^tRMBq=IUS,2(cU>DNX(0}yP+ѷ-\Ɔp3N jG)٦ӯoȄ5UPr#tVxQz,HۤO~=NdWt&1 Q~Ne%d꿸 иd5evF( GHy)#\$\oΎ{a/Ƕxj$Nw=w3dkkHk YFU;&]5΁[`&w\ǯjdoB*{%PCgr?2FVN2#P<1?q\xA ǨG~3[=L?v\YOK|"HG RDo>rud7xxF9M āHf1 w3|띵OV0U[*mt5Ҍ)BȒڝLR ^dE!Ԭ.ڌҗl c h v =?^ZV@96Pjڈ;0:4W>pj>H9b6-hpvG{oey3U 1f5#\}NYKĄT8tjySZY[73 ۑӪ`] *,|{Iƙ s@|m{FT "> _<ӍmH>{gc)bUAFBw2K tY,9/D2hzOeWinRh۬ *r}&ywdŸσX Xu{~]!{9LQtpT|ZYԟG)Fn7RDgcqTl˺v߹eoGWѡN ˠ`mOsXj"r{ ~%hR YCR 6|xw|hM(m]mc#S@[x8H}x1 J)B_Ù7F0nph?WOrع@ڤs4c5,8CɅj<55o7.crJ…=Sm ~ˀZ-}]N%A]R3 8Ĥ W]@{/ʕ]4e5$^҈`mK+R2t"eaګxU:-p]{2`b͸;gڲ0ZPEҰ( CVy7A}n: Q4D .&eX@P(X`1s_wԏQY#)z.6!qrvlt2ie׶B٦C'P+XzCԥ'0e>.by1έkɏa/[-n3~n,f p߹T s"K,d-;_4uh} +U3}R-L0l@3 dZfՅ.$.;:Գ|q\qǧۦwVM|+8sɦSruV]Y}ƀv/_f䈏6-GB\YyRQoxB4}r=p+ {Wήt/,_0 Y ,ĭ>rMxqݦn;z긙K!}P rz5+kv#VECr{IhiIOeMC#K'QǕ Mjt @i7рnnxa(#63-B`nÒX&CA?O&:Ls&R5gPNNNSz^d﹎+rdV C6fհ|9t&n,Eɠ Z f{|~f%~絰MxK/KqY~dEVkk91i)7!V#7לUfg{nUhV `+P7i{ ɉu+w2XrR]~Ee"TU>;hD~`RxE|!L.ֹF :g9 ܛKNKCX"$Dtq|D\ɇ~!UD`2|YpI?C0gˬ3er\gdjSLBvVNz:cj!UUHs@25ILG;EB m6o߶̢( ʒJr0y򜻭6y.~ );,JI~w`< E{]9قM;FFB|'[PHNĂ> 5Η1å/?9MvAGVj@u!W5B03Bׁw 9!\SH}`yN@/{)-TXw8T0MNDѧck|"w$1SMh MEUud$ӀexQ`8Pwb|` q9#$`418B^Idg|^Rkjlә,9*\9\""L9t@G"/C%Ry/d(qt ]沼0$L`{]K?Ƅ,cɁ(g۝+gx7~XѴrY0*oPɌ ,h`#R9 X AHG6h{k8CfRd- { nW~[R%{xoBxPR^# @x(3{`Ȍ.]u#Ґ];D5GO;pPЀ&Q(EAIl%HbzwE֛}DEQAKJ虭 {ӹ<;- XDS6vk.Ly]qz _8ۗsuDj&v 3bXyr!8d5ߜ 0 P@ d@BQCnHe_Ix̩bg''LfC%6|{;P^<"'EBϡu 5VELq$Ș̎PK 'o]mWR}H1#U\!c1]۟OV;cCKYs\ m@hp—Ă{zVFKNv>KbOr$Z,/Q dcCd0011ŋ-}%0J'U2N\" =*89 ӧ鹚v{BQeՁʳ\gV䀖~PA{Jvxo Oe_˲2@1wO~6o=u_MVB`M/$98ЩBsGL{{BFaks`F,]^KRT5fhV*H$_Ԣs^0Jdr4ov\B =e%%Ŧޞoo1'.%E(Ye# =6%qK6ڰ@t Ȩ/$\5l]}&xUtE>;Mxm M)Ҝ0T~`Fޕr&x)B>?Dn6p\ @8fXb<ZҖVY]UHbܞy Yn~ t), s «[9r$C3~"W]nMDL>oH4BO[T .qWrFDQ>y`GQ g7:CnDXL#,7 E!S}=~! #7$n!px /[ "xL\&hjX{F ZݏU ?EûGG<>M9{Ѕmg}Лm4EyңTxυn-DrT `v&C,[erSpuM}|U3xT= i[Pu'صӸrn[So2ZAI8ϓ5Jkd*ihљvsirWs=poF@^rX$>.3m>'UQ"$%c?8&s$0sz4-ͺ{{_oނVzNNYw JECI0FYM%N>cxOȶ@(@Kʶ<5OpmOg$} "vtM8ڙw%^ziD*wrt/%7s6^Jol{tGǵ(|`q/?>>4E9詉 FUXXnʑ7iy~{9.9;=7 ^Î'D=bCSËXٙ(jl?Hⱼ|F"b @:v!v3SDt#l x\(I)0q\ s&%5/ЏC <5=,͈mx^Fx!lk n>,\;fcMGQxd%ŸMP#PGlIi eZ 6iާFs lߜQ%ޡxm|?XTʛ0A ,E 4NMjM%2!.LS-ZŏO{tUQDw<PeR'_TОEO(' f_p 'uKm3;mh=٥L` ~]$ m|TE?1,kkVSLJ^8DʧYZ# }XR%jav= (%\&x$ӬZK;9ٰA:x8VwS ؓk1:ٶxqnW'_m kP5i&-Ħ]`OoJRo=rwH.9*iB/e}1M5BxJ:O 6C`>O1$6{b@;/yN e*Àʗ4m5svkq˅i<5ᗑc ؚ%YTq?i anjK=MOMNop6~q|C uŃy5n**(῿K| UЉwYekɀSM׳iF?9kUq.eFGV ['}>pz>R88 JF?D\@wm9l4.K%iPvAL[,8Jq`Pz`~xn !\*?wِUE&=Ҟ{JXxz-|-*~kZn{dЉMVٚhэLȚ(3?,Ƅ,LوV&mn潨QDɱ-NVu!ugX3XZS\3ryK0 Ώ=NlnX[P6g9wXmd PیbZh.'#(ya6uT![_; ǽ+!b=9Y@nnEUV(Eɝ8he|x-d'dd\Ν'. "uG %]d!6 ;7Z΍fO1hBx+4wK/КdI3P{Qq¥NS@{>suy7\4|K95fMs p>b%ю!VB92x w%L|׵Mfw.A5n5,V|..QF~SsR|*@}[:|, qAAjFq [+ϱ2k:_GsrE4 n)}hm'd/UKwg4s/KS bX:Pk(/ؠ3{ַ@}\A=vqIJӣ^P#_QSÜf.<\}!H{So[ v+Jv.'@2*9KwvV(R {q$ we:Dqj8{cvECM!2DWkip[PFF ]'qTWlE!1E, R?f.m0CݤN\ ãCQY SXo* `~Gٕ̗![k,8?,f֬{!!Li#y-!fa{U 9&H}B݄b[[D j8IU z0}|?4Pp/rcdoR O a r&*RQ~bEe)iJl*qON0(]W4ХBP|\/<빬gC06%W0 TUP3{ݎ>R=W0BRIp{Zҙ~E?%IraHKF6yh`Z@ xTl̀ݠvѓ)J"@ &Q8cP~s' Stk/s}HN bA0I~VQD kl> )6 =;&73nj͆ say}BJ̤_ c<[^8AoPIczA"ۢمBXq㝅J<߽H\ !1@hU06&]"<4C~3?[f RV¶s%J"$K S4|'yPn@d [ jtW㺞u! Uiv6h p5傢 Lb4hXɹӢL2brY@ 6.Vc(M2L|xfDe3z<˃]ìQ@ginW7}T?O\Suevi\U2-N0f~bQ!pqڪo(X*L6ݒ;V1i{ <˔m]땈tgUVa^7^/:g OE~xhʩݲ'rqY-\+vX <7M徜[ϵCՓ섶<67A@&b2Ů!ns`X=4B$x Qgpfُ%L(HGWhf*{CJ2 -lwD4P7$0Ll© I9bl0 ,0_#fSuw!'ݣI [ܫO9h}tk[ BoR(aQn~n (#LUl)0ЋS}XXYw{6E :iZC4\0#|?#u&W:EūPHx}է  KbEΜ/:EWH7n ]Exѽ*J˼s #Uv ]Rى6]\N`Q,kAX$|yERD .iAh'6q^757?@ Dk_jFsZD]Jf NdkEl־:$"d%%H\yS~iDBR,gFv'uR#*BK(I[=Vf >jEG3_w"7gq>,T0BWv8j!7(%O9ճz!*nX& x5A1T@Rj2Z'h_MSU'뛃~7<JPᳫqF{.s"fTL2Pl<8)3.@uH L7" b72d( Nuz\VUB 9|i=_>lؒk) e(Ȉ3JVk#>kQK~CSuGU_4Wu;ɕ饄sc VE\h6O Af ,sg9HO[[; ! SxW-+Xz CYw;)aWumxvU(mX>̶G_UF Y03e9t3:^L8ѕW׆mAF,TRfD!GԘ!9ߋڟ, v^f!o[T0׳ȶ$\P%.-nLWr x}`Z:"ȑI-Jc2r;tSȫ Df7]ifR5D ۉU .1长# ˱j=GRy3yhמYW;s~W:,ulG`{B+RͲ3|\T3!cp׆`dcRVAeU3 Y *Tzљyjz#4އNvOZT~kkvjo7OhVj=5Yx|*^QdT'ukll)Ig.b% |pw8z7_%ksN=:2ޒkDIprzrvRԖN V]j,^O\/9.SlK@}ru! S Fnu0M9:;WJd~sZ|r8ɢm^=<^i $kwgqsm7/@} }-4H5G}4o|K&P=iWS2_/-aL|cP[ lC66`c8Rb}4֡$ /:Ѱ[r,w"1Vln6 :^-?u J.+1fP'&3d0v RzOKPhOJ| ذ5\6Ǝ+! ^jTϚ̬fϖ7#q—`ic l][H{' $.yx2nm;C:n'}%5QHY/-?%v= 0] 2 d xs7_dk }Gw9"q.>nk[_pA(Bѧyx6/wتqJW?,U!ʟ#jVc~CıFcP2}#r}v+ߐLcĹsƺ[e50`o9TPW5,^ *BM4`$N1ԘP +/ c*b?`Mf Qc5T&:'(CE7ADqt'@U|ҀAF##μKk( (/H4;\$z:e.O 0AռS׋bdIȄ]Z=܁ hZ-CXX=]ME2cZ) ճٯn}!ά#.+_*[`Q?rxeH:E ƅqƊpFRȿe:F(+ge;l բbyiR.'KzSP~ zc s)pl.q\FhǾ3;LZS[џW-`uw=B`yE.0tڶ칒#1 淼\*r|$ҔCc_`+ʴDlJ'<+wT_.lAucBI;6. rA9Zmnn6akI!c*%5AR(>qȂ[~q6e Mahg%/|wA'IMw~a-)ka=l߹Кog[- k dєLJ NPg &T˄kyuC3T ; P3M':Ly /k|#ߙ)u$KlGl“x(7~v\BFJlư½|9('V~9 O>UY7X .xS4QF IF:]}5k>( pmTa54vx7Շ}J2)}۸sn%/4ѧ'RJ-eB: u>y$~a|gp~FVK{5\bJ95 -J`~7/TL : ;[A2'c|YPni4#Q.n,9$PU !±2΅(Wy G\C蝂g5n%ap0{rb_B!R+Ln46 A}\A4="dal5c_iWcYnIdRPe\}"Z I?9PuYעp͝J E5'nX8xF+}Yk 9>2/*+:Vu 76]1R[ P]?E4GAl BD+$#p% }SR"SIޔ B|ZX?el>|Mp ]a =f_1HEL>ֆ1#3BVG6Aryevi1u&; j~D~6jb6}Ee~lK,M%Ϋv;=kC: jTyD`\=m%3F~91vxqߡ͚^{Sr+)qMST5:3%wkcOo,N5F1E*7kwZ,sL* )Uׯ؆IcpD66@#KD^Kf:>!z[bON70]۫ˀ+n@Oh{ zSiMKXNp7N{v2yC:(_EDyח78"BnYʞ2Zw/bw7o P!JBiYnn0%s%RS(dfѸ{{㦖ħvNRWAPke]_XffBz0O.W2o\¿<1|gkl 7!0^/ь@O""%u4RvSsݦӃX8fӍ{U]EWp@|2كQbahxp, 6 Y<~ r_ܙLDoΚw N%b\N\?_̝VI=XT;aok(WGsݦ63l恽7ß+^MN2 `^ m̭>=V9W ;-…?-AU)e%Y7jQZ3tl!Nbm !{qu\],XaL"ͫL EMr6C}Y2;9>@Q`8Xm"3ڜ ;b˜}PMbvFP󾔤˚Szc3xXQ͡Sjw"F߸@+6aˌҧGZڒ]L.6 b%QV!H*׬ag%V|q}wuFÛ_F5πOs aZt{řk~k_|JCUA {Z\PI}HU^ *W/CO}9ڿ2DBAW ,3@ >~+v+>̜F.bMmrqv'S 'GzR&T(q6E{侂2RaZWtx]zd.PJhse".U_慄G3)IF5k`*;:p٣ \x2Ҡ$-8[w2q/m\uܝjqo)Nh~VċE],֨Drg,n10V^G!:а;}}D"THE<'znsH䬚nF?} tmƊ6oބjNÛ7@{}C<@ $&qlp FMgdd]Cse 1y>;MZe)q' 6P'9 :7̓8P @}÷(Lr2 HSsk^CĥmHU*i?TIM6;MoŵpoURur.dz6uPÓXcj>O}_[l+X /H /%֚Nlk9BylrR8n2tl[c2"),G\`9Iy4$ɣ(0쓾y}<LF9By p9 JvCR]heˠlJ+Hp0Y <44}ƈ,@smma6 `]%$%b2clK';DbLdv1j6wq&nP~ =wD1# e"a>; `l+{8<:\Z{쒓'4Y6 ayƗV3UU/H`7L=:Q.:(,П4mnYB0p5bU&I8;Ae ~VsF7D*̖`oXua L|uKG7Ic(/\RVZ 3.>q<NuC[&$p/~٦<4dW^p} rk,KvİPuRRDzঘDnbo8UWpf`Acrِ dke}tNV]}G 5W0h|pIT 3'~|㥞t&41Croo7!I8\A<Ԣx+.Vޏo43TLKg(ݟYpj 7(}Vt\_{(]aIs4`(aI>ƻbR_'1lxͻ?91H>yr[EM >ȉ|jW d!D7NroغF44P̢ jvB\H}R [[YQLU>(Ok`vi/ \_ f5mxL|9P7 DO lkό~OCc5 "6ӣ鬀p΋vu^,'$-(?W~Q+텐fMbIr+ύH>EbU: N<2:D{V]ax ,O @O;o>K꾔Z3;Ɵ'&oo@ +Frp5$ <ZDV'.umf sm@*MaԜDNl^u#5lCxDOQ~ /V; EdQZ*iTBnx!?FjuZ&Kͣ8\CnNv CgQt;$]' {*ŲHp^=/79D(M"DLe`%eKp{̩z,:QrtQiN=UK)#)UE0tK$)|7p**55H.W wHJc*Bx|͟[Axˎ{mi` AMϝa]ĚżiTݧ'&",MRHזPt=inIȀiׁ d&ϰ/DM? h `Gd+&NBfpKiwWO VQ:jLdwi<NbR]UdzLcw:;4]K+/M?m*We-/):G 5wIMDܩJ*0cî2$2admyWPԼ/J#hot#2j}hPѪ⣓t%kɩRH!jsr#3;r<k)Y LC"Ġg%뾟8a҃sd CHĔ{ee(cVA]ܨж!]߫*y0nRԃH\c]ު/IVK"ي:PzB'We4b@a#w)el3t^a*̄14XNY+ayIW5clN2!Zf\H>xCvԓ}BWS:G}lIWqCB-IHϲ.nMX|Dpѣwͧ@l;~حQE'G=IڝRɺ ( HN7fCR,iţ&} g^Ih2xÿ`p C0 J%|FҺup:۝X⠮Qr1@GpjXI{5䞺k+ $1x}UؤD=>>}p-(̆p+G:d uB_`u<9':@+э(٠ýLw$[<^QYҬ\LWZĨ|oGdPcri.|~cnLϺR?֍$~͹m<3g^A.3EF#i:@w]Te;,!!Ы4]W^YOI+j _[Phe{qzPֆe9v[t?~j: eH#jt('[j?u0gOuNL<ȹs& XWpL{g +? :D!UV$tܖoވPa bTSWrz+(<{q׋8&Й%D{LTC 16Ew8qoÁ.=KS,:n:vg];n$= /qv#pUn)wWNρ9.Q\4x0s Q-}><=§t6&lǘ\wg(?cΣb2깏 ̺1fhyԿt|#%:hUxs Ci>v:(\?Awaavgπ%`ٞ P!Hzȏ2{bŠ*tεfj`BXA`SW^e/fJ߈5PdUow*U*gm>h;R55 \a)7*( 3-ZCE刽P ̌scaj! sOimmCY+{WZџ6RSgpX OR3@9ڋ[4pZP}յ9xk\i{{?ȕ=ުDQ;y3a{yK=9#R`"{Fp!0%Nwq,?)J0qu1 /%KvxRU؂Ξ:{m`hWA),Sȁ po`݃o2>hbR[5 uW8Ǟ9}Hʁ2ڸi?Z7/Yf4C@/[*~O^N/kGo: `kݟ'}g1ByY-O+&e_X %{0 !TvAn5f~czMLsw]G@Lw Ze6S}-绲U՝ / 0(++oK*Zrucnr>??ߦW0b]A?m\E7*TI:ͷ $BX(O|/kwY&掱aa&y ~q\ʎokԾ敩P9 K}hk*J L^xO3kF!:%cyT?RobYyi,5 f?McW|lT!ܸ0Nyn;~ȾIcC&șdv%60f!]xʍ[Dn?ULV5ko 3U 0Ɯ)ك 7_!~`S}̢LJgzB8 GͦvHu0u?O~H9"#E,@^ `l|n K5П)}:bj4(g[r 3TGT2hTD*8#xwZ8:& ~Rӿ[o&غ'|C/OQ/&D E9zoݥ/^?f44 $OdTLDsJ|r/+1"=ꪑͤ0[2b $ӻܡ|:}E %cgĮyBj$j*OniJ!@ϔ"Wy#2*02YNd-;|p)4ZK]ÍxwOY*OHWs"U%1_<Ψρ?%jqqDD-%| (1(L\Xh'X]2\hL_\ c %߅)+.z-Z8! V]Qи=lC>e&^ӀgR8և#G[y)&QkC_Jdm~z0qY(sU_?Ҷ̸!H?y$D7h-'U?DڞV8jPS##i{Ĉ(Ӄ6eӠZ$ɅѻqTܼqj&3p߾9ElڰG` 0-2]2ip#0۰8= y9]*d@O$͒霈Ÿȇ;Ƭd@H)>((Se$\ɋC6MqFFS,j#Rs={]< UNw$_Quhr^KW CՓ۵ZPCoxP]pk9Na΃*\h[˨py nKb7h# Zm\ Gh!&䚕Jx! #k' / w'(bEB/`x$" גKO8筏|I۝8{z6G7YB5[vOlYD/dCC0UXh5ofJez o.8I5ȫO`6a xP KE:w[]?>;+bG.ЙRZ~f sJ8d3J "RӉ%z>o{.C_nrdO%/)1aKR}=Qj@&N(3 ۺ< D]Dž5 U殌j^i"2_i sg=G[@30!*H`E8}XB(6bzMiT5 c; fuBFT]j_gwrc (q׾%z ).4Ys_5DI}+zED = Obpt_z!T\T=Ɛ4ĥ^qWH4Gr`}F^}a x[!s"ldy#i6UWJfrB]%D3yD=hTaNM3Po׮q07ǡp) C?wE||B)!ʾJ% Y8vDM⯎1edw"vfK]Jd0]+7<(Gٽ,7QfsKqYe cmC'Jnр4Qgѡv<.)j[('jO:FݜMk\̏*V"ТUݬDCA<a&R p9t>̛QTĻ7``:6ɟIelCNy#]u)5ܦRXHd7)`%.t+:ư?Tb28%y|SX,HP0GC$/mG!T9FƗbLLkN9oI屾׌HՆX^G-L3ފSg}xnǝ']^x:t:׺vo]Ě%($v| aZxtI]0i}x)V;MzN̕cBA6 &yxl*9|Hmcxd"?J~.|-n @+ ۇeX4J F͕v8|+h!w~;_"Ěr~/0cSV>a>?`Y՜@d%a5ecj&ޝ_ z*vlO$F`gQ\^G?X)XwP=h oQFD28qw VJCK$idtbVt/ִ9?bB@ƈ`Z _Ǖ+P,*k՝E<r00|l\<0be閻VZ2]خ #e?6;tqAR)?C CMgd/ȺV2llSwۃ6t)sIӤJ_2q©45:72Qʌ#WϔmVDri_/fDM5^b"ՖTAE+7(󠲔qnv^(E=cAhs~";vi`Wblo_@їm ` 'd=T(o`^rG>oD;WbL]cg%eĪK~hD-oC X$oŻB]Lx"U1ϚDH>b@Kvp I 4g W2܋Rϧf~ Ov[~c ̱Il,ƅDNY&9#-8):XD^abMLhh% mhRh`4떧x̀G_StWdLMIBcIH䘪alԆYq~)L6 ݢN"pcdʋz؀EvBpK!lc(pdxή䈷`=}dUͶj%W.DWeanA#> lܾ+K"i'pma!slhEnK-(Hd;T2ۦa`eJM5S!7 n3?;'yP9'酢.Z@74лmVL9"厹"ęl$*"iLN/K/0VGF; OTW M'9Z,I+&둧bfpB;r(p%L7@-g+73EfV^ YoPw91]+4ݦ?RaM¨+wP#~e%A >2rWPt$N|a& Nb8IO40*кb39CmM9{vRNIW،T!A 'Ϫ?5W!+$DIa(/E0E+QKݟz ^20#&=ۏdW +.|Ϳhք7-8O]2{^5,`L<(LJw]M}m"ȩckɯ4TѻIט,1s]w(N` @`+Chj+*P1oǮW-+6|,+RqE;{e^S]a(5v3\o2$ZM5R88¯fXfCm.hjk"ܳh#/YI𧻓>6/UF4IYpdaz=&CPs҄uu")JDQwV1Y 1F ѭzoSb! `1,ڂ]KI=X2h\f Vu/f$<(AԮo~= +-tXds`de㍻&guHfo Q] )uiէ=snm$ݺj2` V c]0|JSMIdMvbV}rhA fi]]?4R؞ۋ=3z7zzּEyt뺳c>O3 yC|ī-Ey!Hv6{Խx |;;䵛\)ZA&N3X8tXLQk֔16`YCH6/?4t ^ϒ)Z[kP["晞Q'f'U*"K*rp(QbjTUsڨS*q2I`t>h t%tiTA\+q\yz>IA[cY=qbWw J_i[= ϑbl[wVхՋRqd/YjjɈq Phn VB*ШPJpt*EEp^Qf$ Ұ5(?ti(dŵNҝhX ,Sad<imnZ{0=n"kɁ,RI㕠%B5U )4Hw5NLLɚW탣gFIV iH,fw22>ZآHtxw MMiQɇJ7Q\}:(Gbs^]k|&(8SBi Ƭq>["xOF_[Ft[Ѿ7+aA`_>TyH1V5W1QfVp[$'ђc.4LVa0H5 !i"++gF_G;<P6i/]RE6l\mw>Nj -xIM&v*$vP+&.x!" _k V.DWӏcK2 Gz܉@(b80Dvc[t.9OvjWHwܹV;vO)o&Y(Gg 1EIJY߁3F؞UW# U i1I~m}c6J3Qлp)3ɳ' lytuIdZFg<cP>C|v 5saNj?%op)jOP⯯fTc@oRB-fZߵ 'nS$Gn}c udy q)gA|bI1t‹*"hY>oנ1jTǞ;+/AkB][}Z:-,t s?S<9FwdvФ7#2CQL|/*%^N 2xl??%Mb2HnNЭe)jXp8Qc[r%λåtF%J;Y{].*ӂ?Q%P!(>F+$M@.mR!|HrŦ駰\%7[ןHAZhlITٗyyərgf7_*SB9 \ݎ¾R;Aw7cDZUཨRcm<5sLq}4G9aiex)M .@JC l%CGqX>$TΙ܂z A"{gh&C 5fvca_E2.[zme'8~.jXoo/1ᥧkn @IĹs S MHž}@g-j BMI|!EAhjWSF u IRZ#')Ѐ R(9>!?CcJa`WY2qGDPFJG%e-9KaU*YWIeʅKpY .6c&MY4漠`.On:U|ń#g\ =)ǍfW«ItRWW;8`] o)Zct*ehbj_a(-50i#w5XnA0{]+G:8_5 v^ [B; {'갻:!yϩYI*zߒƟ=`4Jf'Wab37>jE3aCb{TN`g'Gۣ,z,ju<#)tzD#ݏIlHz⸐?K13z`O+Q h!㖍 8~YsJtb>?[lt{4Pӊ&ٽ]q_nMKJ[=߉sh^Z {GK|aDϜ0;61<~8 Fp W ^-'嫖qd[{MRAU!I_ P$Re‰M:N Jds_BZ)1b4 eYA&0&NR/{j0ak^QP*.-oվeπG)%צ ۊ9ާ^ƢgrmX3٦^u^z'Tov癰p|)MȻi0x)9qp{tiW~ ܄x *'Ѝ-ܧeƬⒹ/m %[> yE0ڶ_k?fn]j%nQStэ1:(g½m6e_ȱ !)E 7TKØX,-e#ґK jw{њpsbSɜQOU,! .Zg} ! ʖs m#)rIeLUh/vw:(gn/^3^Ȣd= C'6E9; }]>87R AOf>|LSu]$M5UlB4?+M$ǃ+]UΈOHll Tp/?hsGRuIVj4!DFyjˤ!1ogHYt]<'~HUwKK/ %XT{z!&r*8llprj9&©Hc\ٟə#,KJ[$R1F@ށˆmgZNzAaeT qO;o7o>5}yavwR?_.So؎gDv9J*wnIm+Aʹ:'α`5wBjČ5DhkYR߆@eD,`>x >sI)w&RQܕi颐Op+UL!h vѫdNF䇥5 0½TCWAR~:o?ƙPQ*uV>yJ=SF?53}.v'L]B)M'rpu&a-6d:ETuZQ ?z۸QjOɲa Δ0+}>_^0 !X*|-}?Uq s~A q|v(\Hmԕ(v- 8hꭻEV~'S&h"$s϶]4"]._Sj05Ę@dɥ-nG>bp{ra "yRPQg/4^_Vt:!uR«!UW_h+Xc5rK0lK7R%wf,:>mT}SOS'i535 p:B8EQuaI@X-8Q'1/AQ2?Ff]ԞA>>qL7LѦ+b33G7-(7$bfdQ\ CěQ8 .OEIB Rq҃Ŵ?MPoP>|f_.{j %`0$v"9XlW 8#a9U{h3Twﵪ?HcLoT:JF2C;EkPz~c:@)@a; mz#Q@Pć"G8/vzEڌZ^37G%3Y祣Ue OI qӾq708ցP>?-359]SK=,nrV :4;t]=¦{L[NHۇaJևbm ^@+<I͝#Cn{my%^d1yH KF GU/5Wv9LjΝb'Pd불a23Icx_eۜk.+5 2A$/{i?GUˮt];;{J5ca%(Fdo\/7+W*>Pp-R_XGɀBXNHq%M2>i$u`(6PďM*pKCsRKN9/PN!;Iv )Q Wn7Mʂ fħwpCyMn͉-佇 B/I$ٌ$bAW[a'6҈B+Iv𷭃L0;|[Bz/H! K?zd҉PS8ľg.u)` Ix?z3}>$U<`"o|/l'(]?C&-E?J]wGqθ'vA1F-?Yj쌣ro_<gtZ."xt[$ڻ*1zM%=u,)7>k? ۪i}5VS kNrUTU`5gF# h+f[peXҎ .ld\NjH*euḭ쟀G"biq"hm66%Pb` dwLI*ܻ]Rbt 7S>ep \|7횋 ӵp6!!Apu+(2_tr@lPzɧ=# @ň`X˵u7=W`[ (8qy%= (ij~uN.Z8hjHmC +dNFx#1;qpbkP7&MK Jh|e̖E j0 R{/j| ' ִAXGw5Ålf-j\Ã9τbJ1iVF֫LJiTx=dirEɥ ?C\1Fw>!W,,"iH*s#.,}BЋw%ڬͣ@ezja9{;m,L};{BSye2x%"&bŔT`zSh/ҍ/D(\bn8<>ڨ'X0$?k*SYznclsDc+%9J*Y*vpu,bb#v7M~g(s:6ao˕eQnEXP~ayx) @"UUvʰv҆CWeSbjBcHRsz/B ?;6XW[ZsH,=Nu.جcۢi~;R"ya'O\P.l?$zjo#.ҧL1[ b}UB#q&:W/}L4CUƲ{JwH*&Co43y/Cf;upUà-,VŋB9܌ Q&Bte|2hjD=%0g/ -SUn} SWԷLOQ,=-e_q:MgnyT'>%4ob*,q L3=0}?Mn5i\LG:?6!q  7&;{bޭ&۶\c-s@T`/S6xxğ^jB4>,$2I.'xs M%5F}d^:T%g^!G,"Fi4:c L=-yMDm/AH({'Rz<].Df0|7cLw(^16Hm=rm't;k:djAo,#gB?;_5Ceg/7iJ`!k }:qFI6" rp{RxEOYKKKOtN.Mu } nm͇Cb~ߓUՔZ#]-rܔTQ@K=94۫\Wy9 8#b17@E1dFmo)/*,Z-x2ĕu{S!k"#nVFg?YrR. |PxBk94vccJQu9c e%ܚ .B ǸlE*fBBW =c/U.njaY.d体\/c7ډMɕVdG$;}:́-iaO$ҷ^>ܭ)OO魟wX,hOD\Fu)_ ImY֓ V81z愡8˻ȑ2մO12x*ڜ_EC?I# @?p|c#L9WB9W03nD[̫]9lqe1K@}Ϭ\V@#li8_:I29?ůcj:"Lͥ*EP0AKt5&B{C|)1&nO1'-$ [ތL hmࡒ%ko0d+cwZzy~WhO_Tu9kxӋ")#UZ|36{4cTB,X$`\uO%%Uk< !C 4BܮT] siB{;>*•g7%op&;nP/>p;/i'c+n?M.-lNFQZwJY'g3Am߉Z͊ Ú'aCdŰ\9;je8PxT0e><p' u0M`wܯ)=;UNV?L3fZ!)ttkSL'v˸ķ}(wJYOf.n)ȥ4LM#RVM'nit}׻Q PRC@G3U~Y*!G`_jĴH,h41A"z<Ⳡ UP.9uh3P ,vA$5;[Vn)ݡ=,. `Vt ZʜK%ѲSh-]YC.'BH`G _. zE1j&ץ.+_!T}S8C <`JOV hc bwQ=MA&a[0 b}!H:ɪadIfSNKIB:eW%׍G,6EMrV#UP)VI#xBe? :fIa@_;: s!_B ׻iP L'ΤLjwzx?p0E-K$W! nHZYG¤$byByi;!Z@X_淒H)yjS,_5fw|~E4`Y߲ѡ 05m~}ވRЅ;$jG w.}uꉛ+< *|H$o,7=LoL!,@`t` T y(뼽7hՁA UB5%za] En0IFss?SaUxt&ɩ7 -9{$X t&* ġ;P qi 636|$ZM3Čg,!F.^> e'Hpvd=WK sJXp BaU'toEA8i㳶',Â%6[64W=+O"fFVh(XjszG]%II'KܢfU`rPFߖs@mvg\ 7ۣ7aHqk;TKSf1`Iڲ?bmHt;^~r6 i`ِI&c̄GGQhhҕ 81p !{+86"DBv+%:F&P F`Gћ}]h] DEكZw/&Ă&'h< ̳I} (O>,`ZӅBtvq9Nc iSrb.Y/M?4H߹% = `lkY/%seFsK4/q2T܋@TtVWHHpeE_YLʳg BpCD.66> Bm#29rż|ܑ}Ɨ+^dAN\9vxІ’9/F<f',-rReVx|Y0Lwpv-0o$c;º >X0|N[/ȱG3x3夌 Wr۶x)U?K3: Shva7jM} 68- coOm1 {2~dv! gwA}=g!>k+] /{Mmכa¼%z'j@R5-|LĖ%~"_Z]im#bBVhä5|KU/p!4Py0XChW<ʂ_JbKDJ%,LfGL.ѩ{O"`3HdOvb ٵlvT!JRNjSs CS"@&JQ`:ViY5(i aoOz~>~G l4~iR@wNOC~f=H?{—REPQq2-)n!M"hׁcT`~Y|s"7AN?_&wu,*1FU4`HxOts~ a¤RY>Y.8zpԷ8߫?5>py[k͜k4@F(*Ŭ5̶Aac.upQ`4ɏ?S_`صpI@k {jK#K)JahgtfT%@{yԀ8G$ÀLj?Dy|Ϋ2^"7LDŴVhO; !45*̚ 0Cb;M$i?d^*nKС`ɕ^ I`AȮ:*`-#&i~dT/wh pk}M󱏅q-F@MNtR"!X9>9e ٿoVpɡ JxÃTG4 d%vj{hbæ.q5|N1"WUCqZO3ܤr:u2/Gaflv!@e 89%o%Zb64dZTG4 @N~%[zJd nq~ҭB L"-%>Fj \XNFr6kJR~ߖnDCI-09IϬZW]Xq\E6dw_('||-9/r8D=2sqB4I'Ik6: *SխR03Z$)<јAEy;7j1eh6pc0LjO,hH 6k>{fNkzz~VF  N#;^[ Xaz'TK6'.LKr|xڃ{ǜKlbZwW]UTQhc j= fq5sfhjzp=AHd#G%ad4Notgί@ 7$Ԥ]PZB҉_׋ڒM[u଀wez _Ch)X$K+>9%0wMq8L麤]'+o(xYog 7iU@FU,3nKU`ܺ6ȧxNLԕW_L <6xɋf#p"C_ Upx;&ҳC}~t%Mnѧ|sZ}Po$NP6,v c z u3w[ҘJj63!tNWP-x2  )h/ȤkL2߯.nAٜ d&`ҩK` !  x=#K$_ţKXWQ"l)^W v|t8nP7˝Sx/O7\o2֟gj5-'9ާԆ_}fꕎ#RPTK]|N xD._YAЊ,@0&ޙ=J!us~`%"''^mјK?NWkG6IƖK]1BS0JX)@u=;I.G(+A: iЕh?#0gb&6 x#&_R/R:H-&Y~52 V}ycraxiC ?\7q`my+~t@E&6sZ8/כKGdWJ ‚X=6?d]M ^K %%<`]aN0{1~w:ļR_|cj'2uW:Ffw 㻔Ywbzs㻄W ւ}^Q^5.9톔7:c,#ω+.b`z/ 尿EْlR ?WH+;ay^#:< ́_#'9H4T 6d~$!q:&݀kW9y!o1 u?8姥fPiA=1PȰY F9ACmiFڄ~o֧J+ቻi-mwlO2Uݑ}+p%ΎkFbf:zܻ[<M3<%\rz<i|.D}t 6v"M/;iQx %aZj_4yZҊ{0eX4is'ag@~$wP'rI-9W^eNr%q3C]6'K/C|^˴avw߿%߉Ǽl~]s,%)QkK\QNXxs*,Fagٔ]E*pۃ) QceWm*Ls9ϋf mAd᧾pנɯ=WpKpRևMȬ'ť` 8:"֝jɭɱ@ku3K7#$ҽr; dfثށ) %* ,hNxP$%pGb?XyGH2Cv? q>VCl|~M$|%OY]cWb*[N:[?#X:)=3sYD(I&~cE$=!ҿ?s؍SGKi,7f w׉r'긣i}vP.R}o/@zHmw1'euihL. xov4h*a Q7{kM^w#/,b m`$qE)J:@g|3 7Lo (dB(;]Yj$&n s)qz2b *:X4ѣi@ږNQeٕXs" !kXbv72Y4X8h)0J 9P2r3Uo`b% 4T.k.ҍ81||-;gAI.M};Y#M)@ =ŝh+6)II(4%XQqohkEN}u~' hT\cC :$%R_Htۑqoi#[!jjLSh8bSzt4<'ƴ1&;L2))[{;{G"aMd~ֲh˜|fCF ?㮸AJ;4S̐xʴHxdl3 V`LɅJR,1 OP2M@4_e.sb *iy\2 iOG^\܂pY=NGkIjD8'삐Hn!H3G5(}omV^@:Tq%z|ե֗Q'rJ*w߁D-7w Їg`6R1?ӈhDΔ% _U2fʒ7)𞨍&x̷cclǥCDyS/k!Qȭ46l= ؆}=qoWtʘ '45^BeqpEEʩ`|,"hrV}p6xxZ/V )Kg|n釰/Adl@a)7˘bR;dqDdEa.+PlzJY2d]B^1#cqqa1I[j 5zχvQ%d'V-6Zk_p3 1{=4x``%nw"URP7wYNSI'n>'q V{@]/b 6"wnU|?Wj_A44}L$pLh6`Fxyz/;@TFoܽdo,RዅBT߸2uŽ&kj֡aE5xWHJHD•U]`!+Ӣ tQ,x!kY1'D%&BrFZ[@_!>UN]:FG9}! Pk\ "KhKL-)h Ew r)+.d1ez(XrR^:Mz[Duޕz.ѧ QN\W@|c艢I1 )^K XGX<}f|UWSN Dظޑ< ^B_—3(=-TseM.bLblKvCY [cG@ӏ֜ *j˷7n-HO%+Ix%wpNݹYRoĤ/8 V]*mD*.qӰ:22i+@a(iD%紻6.o]RżD d)ΛuijKݪk*/|C>ckǰ{0=dUO$;v绿z(|),>qO퓨{B &cCjT"mp}uf3Z?W;k[_vooU^1-/t)bsS'yQ\?%54E7jHefU=ҕKAda)X%wGVpQӖXum8յ: EgwRr_n;Nx N&@Y{3iUd*JμYБT7H PbHpÇ!LQQMH 1BAzTY;svf^l2l <BRglLJ:Bk;U(}(a?e!TlpuU{5 ?a~^n`Ha76߼|K-1TU1#$Q&S>}.HOpr }Ĉ~S@ȝVnvi?* *twZ86nġJq7TF*haFuZ{7%BIٷf vC^T{ޕ18hmUΊRNhֻìkQF NnոPg82r",d[Op͗i2u]lgr|?pONV+mO""7]tj@[ ~A xT=ΐ(N52_+ qKqf U?̌Xzhr ԑS/7ut2m@q_S[78_obm|$B*~  ^eԔU.J'5v.&H9wSFe={8WשSzHD}up$Kr`lcpdTZ2%XIt*#C%}K :g0[W:מtb!V!ղc7Ɇ+^rBJVYH"%@5ݶJz-0αSЙhIA]_n .˂iƍܺEiwwTc-N:fwȗk [{K}p v01lS%#ޟ;/8HH8̬V.AL~YH= Suuua5?,0{o;s<@dwmyɇ>GY T]}pn1'RiP&QZ )HM_|2'jn\n-eV8iA7@秬lbeqVE'mp 1r3ɨ!x3)c:&1Vƌ0~ G-Š?SV r"ɗ{Jw6Tȯl)Bp,0ILh5-WdrQ-x9M%2xZG}.qWSn*h:2M~ S:Twu8#ײ,Xm4 ξs^S'MaqK5AşD#q>2ˬR.ehQk>滷 TWkXY:` ,t53d!4$#9^z}E i>zrZ Ʀ* t`sA'5w76 -[`d˄dq@ꕊ űD7X8@Q*S_/?eiXOl\2KOw`{OŞ`f%:əbqm|vm9/sRjL A~`Ө 1<I $*Hu <<դDj{wSve $6p䵭?^=sBD}Ю+VE!99^AH`!6.I4&L'0}1tUNshGq;-;けJS >St-ӫW͎ ߺeZfs#JunEP Oɞ#B0LQfR%^?4]G'9BXd1;YNɓ{ x{(;E|夠*s Dt1\KX:@,3ulq(4T ~5yRL3`9CkOw/mz_"Hu{. y.xp/}iX Ma83svBkw&"awokp!KbU >5RsEEk&`4z2ceK`NaV%T$/ Α}lޓ*nR ˈ~n 25WIhH ]{<?#tc' q0Z:fϨ~`^eUg,I?t]yΡrWV_"ӎZi+dTn¯Eč-U4f-Nང(e%ftХ8䁲e8F_&H5A6鿧pB*,f̤":N{ؔ/sCӰݭg^{ҰO=d&O8cvaq'>P+K +Ir>yrI~)g*>Kw⟺Πz$RCёQ7rMY}S0>|m5! ڮ2kY.48)Ļ$rwC 0#*0hc'7瓓^lFW9#TVOS&Pb9P¨?j`;OHFepkD@bW[I/hXʧtہMM &U:q]iSQAb[P(pDo* mnkb*6J , %j& 9'RoӋF0ú=Y Mchc}5;ȄGx? '4|:*eBGNˆAsLՑoԲ) Y{) pS;npӡ`mFU=iсp6m߻n<ڷpυbŁS[gV4E~ZCo̢&xa%1,Uh?t 7_x󸙩2nlνT S jA eWCWHDr^iɎȌVi; K$B,~}&=62E((p&oOц}۟:(;0v K,piftvҗ"x$? 7:!뭼F)KyTi3Žg 6G W0[ \ ª}Ѣf7 .EFTyq$kP}:× jN&wT2p+hƫq04Urݏ;O^>cӄRuqdʶ4r;rٗ& b%HdѪ3)]ff"p~D?X{[9x|Ö>og('k "Wv5chTK%=J~G{- -zF7J|pLJ_դk&Ӌp։ImL$V&!3ݳK.YZE1e3DuqlEHXsY=ƂkMsЫ-50e|&Y:/azeIrC+AUs{Mpn"1W-85xVg ;1' 'VE]TnZ3z*̢]վȕc)qӲBreGՒL%0M;6H9igYt@ QwKew1՚AǓ*XV:!+%j%42{"?)Hq'߽q]ARt0c <ҽ~ j=D݃2 uGqP4B!dyiɛf[,Ʉy{DR)"B PIrG`-%jLo<=S<hh\ E8K+5%v^X(<qJLA Dl72u@3nlb7 #7Kf) 4]Z jVyg7HX5:A,E'xwkZØjk"7U_05Up\|ү"z?x~54Gnh74I>,jϿp`0èLAY*{Iհ,p齽+6"|qWk%kp)q/l/Bki}ݧFtv@v 4 qtцB,5OV)ݎi@&keg_N!Â򇥥^\St >ΖGN&QX:"m }$Ai<~pxĀ7]P{tXU ;^ 7ŢA>;nW} Hq+v1]yԻ# \QfCBXX2 m3[pݯ[kŞZxSe#%gOA9e$4.WLXpqcg4n-HggpȰ?yW /41sUI,H-!K_Pj]0,?BeSݜmGg?3|Z#Vp>qhc zHlVw]4Nk CPZx!UBK[%Ġn7Þ}@߲56<D,g.k7}{ "`f )C۸PgVOn~Ym~s19|zT;=mW(Sܕ8d4AX7œ. ޹%io0 }%JK悆悼Oh 7,.t܎sP݆؁JaBD`(Jl}/csX+$4Je]|i9 uQzh]z4ZVWȁv^3R,45eK bFG/u^¿^ tU'K45SĢ{IVEZ%< . W0̊a 0S[Kz aLpljaZ4J&GɕM%0׿&M=SPɫ)s];O@F |]:N]Iδ "0c:fgE敵 N dpMg[O$ԞÙ_'%\v~M))a^Wݳ5"_HJ NۈYfT : L?e f{C\R] )SOt`!JQy@lDJmE`p * 4[Vrfq!)˵O'.VB4@Waxdl):74!c8L1x'0J]:cGL<iLC.񖪘ނ-3xv,4&.9p?Yk;r1oEh O_qzɹ<.ya{.;SNȤo0y;?GP3fF0La8[tI|nONa)Vqz8t} s#ROΪZ-YYU4\º?giD=9zx@C8㲓Q1.iJ.ڸLjۭ'^,G2s_JRxXFwnv)-ޚa vC/B`Ez x &.ˋ\T|j {+c]O_Mv>*sbM6Zz„$g`хRYyjo`9S[6jU{jllrL-;ҶZ9}LFֆ)>09aIc2@N]I-4slz#:g<,:Nmnn[okI/M֬}itA`_g"gglC#I8g95_xh"}ʋzN"s)Wh{w:[vHO˪aa?+]q oȳj&;t"ֳtL5\.r M&|~o6vԠ^Z/J|Feza*4\p%,xu V8ifn;ڬi|'Y,f?}ߟ5 Ś;T5dtv|M klYof0j G^DQ:hiĤTX7~b[8,r;tF^#jEU!id(CΑ.)X6^2 ZϠ'a{AP2z.xc%u kHoP OgʦPO2}\*Kd>u'Is£:5|HǶ*`NTcfiIJ$#fŭj<Ř5qv#BTsi.3RQiߑB*?j"\P$4ٔݯ ,`͉: 8L)d xʝXF(sG6vPPBաߎ03}H#oڵ>ZgT5j_ ZDtr4 g\ؒ訋7=l*3y^ǭ%&F:\x>Pb m$-y<*]_=+}I _fTv&OPH.._D80;5iW l\ƞh 7>K{'&9H.s 3p@z!g:cLJ|ltOOokL'X˄w[#߄_uί][m޸9˛@UpM⵰zYr*Ǟq*>s)>V#:gDXitQ'ƳGe^9Vq~B2˒51G(uldH&ͨc&ItyJZÜQp_귊n@ Ga(! cU޽$h>s-r-T 2U훪OX۫?69Rbla:(d!#̑#swqΖipP2n.ff6Pzfm!*̩5HLdy ~Vfnk.^w-**( >%zLALa̢ˤT$ÂAZa$PnM ^^\MUg `Ӊ45:,?Cy4*U6 j[ȈZiQ ?|I+WCJTO–CtXd@e1RCݏޤXEq{h-$e].Ӻv; lA}:Pͦw c^&ECwbx\OiWnZ?C 1SGkkR"msV!ų_(j`~4'wms2߀GѭʹH 4쬠V}Ӊ8 $CC,Kve!P\T{~K5ŵU58\=œO XydH*%zouh eRz 0iPvl[ sH{\r1#XZOdkss)yL[ U8R)=|9˩bvV(AѬIS_>"ʙEc+Ccؑ׋'MR\aG~4͔ޗgv&7,#wR+Zg~h%ylHـp"z]G'-~=nj' Da|fqK"P"EYY4s9L53*9yY{:'MjIB1-}LY nuHB\bV|Xdȳs \Eq/rZ͐%!hˡ]ȡT9-t=vI #Q=\-ɰ'HN8N}h>܉ NHyF9/|Y]EՊ'2r$U w~삹dwu;*D`!ʃ Z$?geYu*Lp?a&_~/y$R~S&" 77vyit81,Cfa\$bJMb6I_ޯ _9,i.aG) J$5GΏG+bȻn2WJ(}=CMz KlN@^׼P@!#r,l^&9Vn6ez]w,:q!%?];8\<-!kc^3!w*ӄ B6UKQkYwD`UĵM!z}3dOb^@9@ 2yu GySQcL*uf]M[=Oy 6n!ȹbG})='J KAReP` -JQ(w36F}]mά@:]f^ϘgGiXיN )@ܝ_ Vy;55-Ɲ/yGVxzQˣKnߞ{tA=r~2IȘrU9j)6k}J۷Xj,o(R|ܵs-r@?up> wQgԠΌhF^ !{@i]JT7W tNYL#Q!!?Mo؅ iOUwB\}֩gBa$ Ōfb^%0WFy=%\pɆB9 v/}(Mr]7?Z|uŇѺn/BrRK _veEQEAeۙZt7z`Txa }lqwƜ!0 i 2z;R↙6lkR29rudCCh8o6ebRt]N֟}4QmҘqsL2Ħ5&1_ݦt*K x6"':_%dTHŠhvۺvi FWQ7>敹L|,3(sA ,M8֌tM6_}}R!pu@Pψތ'+@e6Z=#խVv:C%/='y,[abyJgZ:7ML:-E_ #>LsJr$we=:HSt1nCtu;Pr!' )\Z~ y9W4&h.ђǗ&oլ頻HJZA4*habU;a~ scL+8XrBեcyh23ykz)zfsU@UTbAgg~_ǀkm~~jQLd"$ WmB/? ij"Ut,_l1u(1Bk3V3PW/e`iD'g+Ys(TH8w5iV?cnK_e2=T݆%[ʏ3 -l@>WTYQ<]hL vg%cϭrh`5;*61u);k Jy(:ʠdMGY"POpQHIL$Z&5hrXD &s%g5䬼t#t.2=o4&@6O4N헟'K<).@W"_YFY#LQJj0cOZ?mp/.R ˖:y㪵a6!{!rՃKp:Q0 J!~܂B cz("C8S a`{傐ʠ8+;|Z?8spp^9pUGg$Hϩ\է6Vp]8;z-0?[r^GDFygE%q'sX-Scл\nXK1uuom`Xİu_]wi|}6w=H7.W8yꄲ}X4Q(%ɭ:5(P.[qGN̷<. –+d?0ՠjq%1t=rBzGxB*L5Xmsϒ} "jD=,: LB $k7 &3Sir4~2tqq&q ף{)u24+LP'B|hIŕid@kvpf ܼ'4)جOi_&{΄[2Gš:BCy{.6,; mtfid3>i/q}WԷpg%bcڂ:wiM?v  'p4d}41$Q'\?. )'mCgs}lI)}[m(ڗT5QWQmZQ&DhV$G\ }oߐY_P@9[Wb%S3fx պiفgşUrouD؍qg8zwރNJx z=l-; 䂦j={"ykvJxZ2&*#6<@ҊMpuM_D Rxu1/|6"; Nm]{š~ ̀%zƜ:DajH 4AbB6ΚgeG =<ԆWxKFJ5IFXV"d@2M܇Vۋ]OKk-˱EϾ z"}GU6#$kfθHb]?L]WĢޤ)RǔDY@ۡYR<}؇F%֟-q[h`c^ *Q`I5PiaĝE]fdݪ1&ƻ&EYVb3&"k;I*\-;6_\_C=6pn㬝tǂ3~0/nq!.krPRU!?Z*VsvL=XFҺ, ֪`Aiw ݬD40?d5kIp5r<Ģ]\h];+0-?ߴO.f?(\L5. h)$f&hY QG3}JGqKSS)GM JEĎJh1bd>]]j8uz{*~u%Mp rF%"֙Gu"U@h ]Vvf K''B>j%0ã 2o,gġg+ #~WR'6`zU(5MM*xcQ [ BsŽcNM ɦgZXZ f*o 0Xݥۭo=_A%BK2=r@2u`-)x)%fhHcay2rB Ƌ#vN٘]b TrGsp(ͻ@vH6SYﰳ5\YL7  5aq))9sʷIQ8NPu *.5t8QjZI\QY"Y~E)IшY\# (}T>OC=Ԫ=W[j#>뉗V 42n,)Gqy 3% X^J$z>mGI!(^~8*夼-nӱ/.S@U$,ɵӂx {0/*FӅ>yI?順 ~QMϼJi1okBt0N{:jA="jPx\9e^4F6<p H9Bzg\o؁) ocf. |!MB1\]Fەe֜~P ?<5b?tho>L̻ӐPIj `m dC6':iUr  8!!&/5dd8;6v^[ n;@a21ZDIxz4Aݠ)XВƞ#P8_ #E'ILW R4('VoE:CB4d;RiT&Yg9X. Ejq:C|[\# WucƬ/ж _p˔^4,Vxc8w%L[>p^ SRTg WkG+< A}Չ@Y qOh<"`hM$ _㝢m~˜X?P84&wM!5,t&rXo#د,Mw;_;2c֜.0Ø))Dٗ%[\?pgl@s)!k$V~%1Lr&=@;f瘱q[0Ry;˝FhlT1c5yźW'm>\wsJD`%-vf-&wz $(n՝nϻ PXΛpjz}ؕ1Х3Ʒvj?p{MA2EHvqManQ%&9#1u֌)L7C(w^r,.ZoBˮd?5ٛa}kͮWa0t.dm(4e܃/Np%Y%YX$[x{+dp>_[$} \K~L T洦@TBqLBh-+C7-7c[uvfO5PH_|_>s ^V ۪bk8t1eItK[`Y rgBptLVK"F2iCm_qhS1]  -\n![f  (7 :D"QуC]pkxH#SDN\yT">8K$Z/JRiQ71<&6eQ K2h^/t:]Pײ1k'c1aduPOgK): U#=DטBU@ٿ+&-hȽ槪W /6^QS!]eg?WQ T}-YslmЄ롳-)l Fߛ)&!&9j+G_V;4~u!7Ij`h+4f!mPIo%Na6A_C a9˳ぺdkSj7B,n .t.g_,tw|6zKD6J.H$Qyݱ?͜$q"%Q Hj9$@q<%xf3 *.EA黬 6usy:I礗v=lǼ6 "BդgEf %i Myr3 3K~Bv= `e Ѕq.X5 J(j7C)D ^g6JŀVT5e'\۬<̞(~ô^{ھ RWdija Wfu漎gq^l8N2q]DdE e] 7:_d$hFR]x4$(`za͞=XD\- TS[HȦW9#6A5<ٖ4.*>ڐ$E#tA/$&]oO#1l8N"uu"Ӵ?TY9_Ҥ9fC;=p'&Q('f1 ( jP|\oWF"vcCE]?tIYxyՑ30MS9-Ltd>cSG6$@8 (jLR %va:Dyc BM*- pMA*aotQp Tq@4tP܉ ^|ӕӱ7Anǁ e? S alڲ, Ke_bj-/x\:Goӳ;e|nb0f@쫟Np;%9撀9jaU&0jCb<;$jYVZ[K.-Dq~]c<Şܩ6]xDp7aB;|"I)"oNH3WѓU8y qœmz)5YHĪZ r}mw ͚[ͮH? NYT|M=`Ky4- D5*ě F XL 3@d)1;u.5IJui͕Sr?&T cfE"a9ZG?ג](΂hK岜-_'! ?FO9vȩ`NXd!k2)K@$LMEd9RڽGR[ilȥ` AO9нVFReP5';Z*M^_nNV3L΍shޫ+~= 24p*T ł]ʶ9IDaW|xhAf;0dXr{<<Ƭ~K`uyCc[(K<7qKY ?ʶ(\/-:MX[ , ΔiB@ uqM\Fɦ(` mG\*` (YaȢt9Q_`%~~RZu8Wp#9bFdFDb0#$x̍u&$DzN5+4 [I/GzB#KK)hvI>J,h|h7Q{8QCr@Dj$bbPnJp;g7,M1FK,!j{^;_B;D=P.u?,(fKhSaY 0=;CW,n!-{T2m%s n3: Hú'ffaW+anw<9SOC~5 i*ҒXx.'(l:xG֫Gav_k=76Izlm}% t# X:1dd/cq٨&Xxw6=G 6 OC>:  _:yKk1/<&*6ʬEEBEOQB$HL]WRui/˘0[7{YHw)O@ ^~UM3 blпv$h'Ucn1m@wS}\8"#%8x1$ ]M^Fk@Дr=;**,Hw\ >`O"zeBDf@\/9QCɄByDU-*ňCiҰ|ZAE3I9SzjiYC+ki5 G;n{ޡ'wu#֠#~lg#0yJbot8]iX2+!{L̞߸X(^ӌjG%PYȯC!8o)]p1)m!Jf*)ZgCڟܑ#oI֩M%NvK="#:wt -@t7Y} f?sNx E9bncȿX]VQ3hF;%5*HF+5Zl\MXGH]˒x Ed 8ؘtkGo42# _{t `u o>%iY&63&)NJ0jKunùf<؀H$˴iuc*od3zT\ M(RFuIaҨMܗ_߶bJR!,w@}g0L?GW(Ovp¾.doN 3xۇ/-o82*!Hv۲P0lԴ]~>TeU b`c9Q yVD3\ )9df 7 $6YG@SB6L@uVд,23ص@G h)Rf$Di;2 !/gS?G_YOLT.pڱRYhI/SWИ ml  iKW f?ՌJg/^͠|rid7qrܺC@[gKu@X*A4ͦ|Y.H m?ڒ=+~d?C]gYP?s1g/b\*Ys qR*aF05L[F%vïʜO,PP3$j{jc``'yH>-BTZ_LwwD:*G H]JCtgm3nRbs|h(u(7jwGW/=fxtCʼA t.ڄϛΞ` M}nһX0Y <ˆ> rUPR0SU4A;Ɏ)LVy!'cˤh3')IZܧvgHS֩.m ?Ss⛐cuGR+bc[|߆-jAkyy3D'XNn snZ.̵xa%M Rlq )'Fln^DD73{:WimloGVfuC 2BCuU"f"#rH7G×VN@E_3"fחsRrg3ْ,;4/4ZJ"~;̧w^OO@u,pSRFr:1bŒgk+ " :oww8DTƝ3M* ZNY&Q-2)` ՘YVo$$X |+' ?ˌW:N2yHvGo3vVNPuS{EAGe{1$ [/eItg;8Hu*6>ngFO 7'nYN{&cr- LpSqOōy"0J5:qE)}ߤB Z Orڞ&~ضZ#ϲJ;yWd)}0 [K{{7&'h^ՠʈUjzW 4˫a,-t _M: JV C_ہnNf3':K"{9lB=yHKueh` Ш (.?R{!.Q_#r t˚A^UyC}>2x鏓oyĨmqۭX@^lbOuP,LRjs iSl}/#l6BD8a9\zkARTNHqEWЙ.^-N"B*'8- S 6} Kpf>Hn: 7c%ܞHZ!I{8n]ՑwˍS)ږkv7k;O'ohĩ?x_BgP>/A3oY uWw ChdzXlA^IDqcgKw|O摊i[N5Ѧ]:VEMpt 1L'߳tYN yU_jK5ѰXW'JL )9)Ӷ1aA[#֝vH ͪª~7@jQ45Q.$s=s -_z7V>oSKO%ҁu5OQ,XHR'ɀS#.ҟ|zg` 8QsI?d)) }3Г_,fA 4>Cz@Mx#E\bC/'݉ fD;IzSX6yނ$+Xu@ЖVP&)2k-Oq Mh[ftNU؏*~BNՓ}]<10K #&Z|;CfTa{ Ǥ7akY8@"e,ScwbvROOcVf:Bǽ1䩇Ou9F_o/Gr5@hK 5RumDY9M1͗}fZ4d1"(p]spXFc`:BSe^yh :sNӠ* L5*&H 0kn˧`}?I)lkq ?!#y(0T w1⭮ M >Az  ag:=rz "0-&Ʃ 0S恵{$k,tuV $%9Q_0i_g\X6\16Pj1F A IMz[KE`3oQ^鹛M@#IK'$!"eOb,8~TNt}iMw"jVh=;OǦQ^ _܈oF̤XZȾ<&>|(D GT\@aQ"}8̔ͭ}5#WGC |1oغy\opv%Gu76Tc,Ȣ c.Ê| 6Ƥ*?ą4b%*x=6"MbtA8H9UmtQyK/6+^&#룥eMp9"NZIRYr!s.r@B]Ef\.8CW^lM:k.Ez9PM5/t2SCdM_{Dfs ,(S2Oy]rO,9;G?:_jmM s}=}GqBN0N.#(p2kpyJRfcKcOi+\XVeLC*^;CUPr$)!AL!bҠk˺abq[oeȁ:QT?>)`BSNp b0 4}4@Ro ԇ3[( Q|4 2|Sq^H$T%ͧ:h+ط#^S^0RUV󭀛õnO΅z*yOu[ksWt Iǟ5] QSan OI?Z#di_K hs5I: vѫ4e|uL>cpVIGfu;}6=+qQ(%AݤX3b9Yvl,sXTitTԃn A.glqITHrZ3k> 9\noXC|,(WAS]picϵjK٥6HΛZTKM:8N[ >m7|ZsNK(NFJ9iBˋ]svw`,ZnPe+G")TS0o> 9̗4/CM:U ai&:xfRCm].R}Gw[x1[[''=W)5)K Ź׷be<|eBoǿ]=āCVO[33|:Ҋ%~u*S4Ketuy/_dKZh͈jkQn]|m+MBg_&b @}M=u$$dqŅJ{5; `^EI*eq-˸]u.ܹZ0n4NojϓMgjÂz R :#s=4|C- Mv(䄷o=)}ܖ|P)"∕}V:d 8c]Q9Kޑ3 Ihh*MQ#s}@KVB!Ȓ=6Qoyx QMva] sr|ɱX'XS. Ɛ$@[;5G}XU$RLGhuϧ>[V%KNL@F;`.]v'Ԣ2헹?x#um(tǭMvѱV/F -N$apS?o(G&i[P jueO^fhb=!'SD0"ty@m]ָA)8Lo j >Рm@T)8*VcYߔĞ? "B&`ʛozӂO0.lUS侻*L|YǒL f6z[qU?aU*Qv:eLu*Ⓑ>rV9A~PeG)\=(πy{ӧ=} 2kO9Z‰Rݙ6}6pO+_Djli޵~CĐV߯XprP6 0NlnvҤ1I9m򺡏FEhgj|d^RSTW!^juK5s*F\!k$B j7ݽ%B\ۏLbG@BhMʼn _b)2M &౿\F9]'y9Č}z2&܂8 .`u 7&&_6U$}O/愍1) gP *"b30K_gz};EZPKC+Ɠ{S.~?kWH!l5Z_,clW/ПS[]c1mvw8Ū@j<@9nZTFඅ,N4/MxO.G?AZI1TyqPǹ̷6M2;: Lݎ` ۛAan{sC`%9G 1T~ kAƢhϥc5- :[b>L9sh+lgd>ZJCMEIS?? Gy^ֽ {ץ}HCTqh}FD*~rV%'{L!tRš)&ìU !rf|/Nƍ?$^xrGߟa8ْ@Y$ڛ' QE߽|q#yG@H͑VqHyo\D9Q2 8RIM_&W~ [ #Q%UBcT3Hb^+;{Z)YBFd5z M "ܷHq́Srh_|$5n.kT:SJ(-`L#G" a;gr}/煙bbҝ0ϲbM(#J,IB4ث&mԃL#P\2FX`z_]q|d-ʞ5VщA}ϐLʵKk#7it7, {\"*B#y~(F zITva]|ĥry]9O긘Z<ĒJp<*ё9%{E8\e}g>|}yʑ=ٞʰH7nl[ 1w lc{D{">}k2A-7GJBiެgܢ1F=-ihkwDSznC-Kf)T?0wn|z|*(<0eyn9u~;)UzXOf"jw3R`G%εc:ǝLlly~ΪEb#@3P=c("ANxwDWD^i޿D2ʎ pHv]O)'At]ǘ?4:t<"dͧ ХSXh]|Vye׻T,:';4c -OE6g_ܖDRR.`L!O'y8E\3nt&;P&%25݇@S't 7A|ݜPxZUȩ qzX{F"G+UUQqzw@rU@6)H;vdw>rTX}YuAώeTRyvZյ.WEl.G豀=琰C}(AxG$(v苣-mKQfXsQ; y~8aTp%Xet݇>Wd2%AԖ68bb;4 :iZ]f'.3\6.b4z'ԃqUW$2xQ=JNq\29jRpea}r]lfUʝO FRP+ydB\Hh4e9 wPh&f{'-yw<.H ~.ER""aM'B&7CwژHfvȕ1+d{<sEiׁ\ZiEC48?yB68"*vI~QZ*8<F6/Ng./Ө>:Q1rR^SHzL=Yi)+_^HV˲d=i G% ~KS프r^xeelv DsM5E=0']-RAh'+҄ uP=o!)˅BwHS 9q_VՔ@gAÜƤb[E!x>[2U?.NM\Roѹn=q9\xQ3>C@.g゚(=HSz(!["T_SK/2IH6i>!Q<I L}j/,mN{mQe|C <@cGb1ALA3YF}%lK!EޖSKmP#< _<\r\NRPq[˷]^dG!jeH |~ZdR@(S-sr5hF|d *,hٷjq@TV Hvq\)b8:iQ"ғt YZ