[PATCH 2/3] af_802154: Disable auto-loading as mitigation against local exploits
Forwarded: not-needed
Recent review has revealed several bugs in obscure protocol
implementations that can be exploited by local users for denial of
service or privilege escalation. We can mitigate the effect of any
remaining vulnerabilities in such protocols by preventing unprivileged
users from loading the modules, so that they are only exploitable on
systems where the administrator has chosen to load the protocol.
The 'af_802154' (IEEE 802.15.4) protocol is not widely used, was
not present in the 'lenny' kernel, and seems to receive only sporadic
maintenance. Therefore disable auto-loading.
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Gbp-Pq: Topic debian
Gbp-Pq: Name af_802154-Disable-auto-loading-as-mitigation-against.patch
Tweak gitignore for Debian pkg-kernel using git svn.
Forwarded: not-needed
[bwh: Tweak further for pure git]
Gbp-Pq: Topic debian
Gbp-Pq: Name gitignore.patch
linux (6.1.119-1) bookworm-security; urgency=high
* New upstream stable update:
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
- cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
- cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
- mm: remove kern_addr_valid() completely
- fs/proc/kcore: avoid bounce buffer for ktext data
- fs/proc/kcore: convert read_kcore() to read_kcore_iter()
- fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
- fs/proc/kcore.c: allow translation of physical memory addresses
- cgroup: Fix potential overflow issue when checking max_depth
- wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
(Closes: #
1062421)
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
- wifi: ath11k: Fix invalid ring usage in full monitor mode
- wifi: brcm80211: BRCM_TRACING should depend on TRACING
- RDMA/cxgb4: Dump vendor specific QP details
- RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
- RDMA/bnxt_re: synchronize the qp-handle table array
- wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
(CVE-2024-53059)
- [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
cs42l51_probe()
- macsec: Fix use-after-free while sending the offloading packet
(CVE-2024-50261)
- net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
(CVE-2024-53058)
- ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
(CVE-2024-53042)
- gtp: allow -1 to be specified as file description from userspace
- net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
- netdevsim: Add trailing zero to terminate the string in
nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
- bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
- netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
- netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
(CVE-2024-50256)
- Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
(CVE-2024-50255)
- net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
- netfilter: nft_payload: sanitize offset and length before calling
skb_checksum() (CVE-2024-50251)
- iomap: convert iomap_unshare_iter to use large folios
- iomap: improve shared block detection in iomap_unshare_iter
- iomap: don't bother unsharing delalloc extents
- iomap: share iomap_unshare_iter predicate code with fsdax
- fsdax: remove zeroing code from dax_unshare_iter
- fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
- iomap: turn iomap_want_unshare_iter into an inline function
- compiler-gcc: be consistent with underscores use for `no_sanitize`
- compiler-gcc: remove attribute support check for `__no_sanitize_address__`
- afs: Automatically generate trace tag enums
- afs: Fix missing subdir edit when renamed between parent dirs
- ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
- fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
- fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
- fs/ntfs3: Stale inode instead of bad
- fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
- fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
- scsi: scsi_transport_fc: Allow setting rport state to current state
- net: amd: mvme147: Fix probe banner message
- NFS: remove revoked delegation from server's delegation list
- misc: sgi-gru: Don't disable preemption in GRU driver
- usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
- usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
- usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
- USB: gadget: dummy-hcd: Fix "task hung" problem
- ALSA: usb-audio: Add quirks for Dell WD19 dock
- usbip: tools: Fix detach_port() invalid port error path
- usb: phy: Fix API devm_usb_put_phy() can not release the phy
- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
- xhci: Fix Link TRB DMA in command ring stopped completion event
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems
- Revert "driver core: Fix uevent_show() vs driver detach race"
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
(CVE-2024-50237)
- wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
- wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
- wifi: iwlegacy: Clear stale interrupts before resuming device
(CVE-2024-50234)
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
(CVE-2024-50232)
- iio: light: veml6030: fix microlux value calculation
- nilfs2: fix potential deadlock with newly created symlinks
(CVE-2024-50229)
- block: fix sanity checks in blk_rq_map_user_bvec
- cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
(CVE-2024-53054)
- ALSA: hda/realtek: Limit internal Mic boost on Dell platform
- cxl/acpi: Move rescan to the workqueue
- cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
- mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
- mm/page_alloc: treat RT tasks similar to __GFP_HIGH
- mm/page_alloc: explicitly record high-order atomic allocations in
alloc_flags
- mm/page_alloc: explicitly define what alloc flags deplete min reserves
- mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
accesses reserves
- mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
- mctp i2c: handle NULL header address (CVE-2024-53043)
- ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
- nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
- io_uring: rename kiocb_end_write() local helper
- fs: create kiocb_{start,end}_write() helpers
- io_uring: use kiocb_{start,end}_write() helpers
- io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
(CVE-2024-53052)
- mm: migrate: try again if THP split is failed due to page refcnt
- migrate: convert unmap_and_move() to use folios
- migrate: convert migrate_pages() to use folios
- mm/migrate.c: stop using 0 as NULL pointer
- migrate_pages: organize stats with struct migrate_pages_stats
- migrate_pages: separate hugetlb folios migration
- migrate_pages: restrict number of pages to migrate in batch
- migrate_pages: split unmap_and_move() to _unmap() and _move()
- vmscan,migrate: fix page count imbalance on node stats when demoting pages
- io_uring: always lock __io_cqring_overflow_flush (Closes: #
1087602)
- [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
- wifi: mac80211: fix NULL dereference at band check in starting tx ba
session (CVE-2024-43911)
- nilfs2: fix kernel bug due to missing clearing of checked flag
(CVE-2024-50230)
- wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
- mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
- mtd: spi-nor: winbond: fix w25q128 regression
- drm/amd/display: Add null checks for 'stream' and 'plane' before
dereferencing (CVE-2024-43904)
- drm/amd/display: Skip on writeback when it's not applicable
(CVE-2024-36914)
- vt: prevent kernel-infoleak in con_font_get()
- mm: avoid gcc complaint about pointer casting
- migrate_pages_batch: fix statistics for longterm pin retry
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
- [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
- [arm64] dts: rockchip: Fix rt5651 compatible value on
rk3399-sapphire-excavator
- [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
- [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
- [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
- [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
- [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
- [arm64] dts: imx8qm: Fix VPU core alias name
- [arm64] dts: imx8qxp: Add VPU subsystem file
- [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
- [arm64] dts: imx8mp: correct sdhc ipg clk
- [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
- HID: core: zero-initialize the report buffer (CVE-2024-50302)
- [x86] platform/x86/amd/pmc: Detect when STB is not available
(CVE-2024-53072)
- sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
- NFSv3: only use NFS timeout for MOUNT when protocols are compatible
- NFSv3: handle out-of-order write replies.
- nfs: avoid i_lock contention in nfs_clear_invalid_mapping
- security/keys: fix slab-out-of-bounds in key_task_permission
(CVE-2024-50301)
- [arm64] net: enetc: set MAC address to the VF net_device
- sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
- can: c_can: fix {rx,tx}_errors statistics
- ice: change q_index variable type to s16 to store -1 value
- i40e: fix race condition by adding filter's intermediate sync state
(CVE-2024-53088)
- [arm64] net: hns3: fix kernel crash when uninstalling driver
(CVE-2024-50296)
- net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
- net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
- virtio_net: Add hash_key_length check (CVE-2024-53082)
- Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
- media: stb0899_algo: initialize cfr before using it
- media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
- media: dvb_frontend: don't play tricks with underflow values
- media: adv7604: prevent underflow condition when reporting colorspace
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
- [armhf] ASoC: stm32: spdifrx: fix dma channel release in
stm32_spdifrx_remove
- media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
- media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
- media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
- media: pulse8-cec: fix data timestamp at pulse8_setup()
- media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
- can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
- can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
switching CAN modes
- ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
(CVE-2024-50286)
- ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
- ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
- pwm: imx-tpm: Use correct MODULO value for EPWM mode
- drm/amdgpu: Adjust debugfs eviction and IB access permissions
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
(CVE-2024-50282)
- drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
(CVE-2024-53060)
- thermal/drivers/qcom/lmh: Remove false lockdep backtrace
- dm cache: correct the number of origin blocks to match the target length
- dm cache: fix flushing uninitialized delayed_work on cache_ctr error
(CVE-2024-50280)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing
(CVE-2024-50279)
- dm cache: optimize dirty bit checking with find_next_bit when resizing
- dm cache: fix potential out-of-bounds access on the first resume
(CVE-2024-50278)
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
overflow
- ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
- ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
- net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
- net: vertexcom: mse102x: Fix possible double free of TX skb
(CVE-2024-50276)
- mptcp: use sock_kfree_s instead of kfree
- btrfs: reinitialize delayed ref list after deleting it from the list
(CVE-2024-50273)
- bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
(CVE-2024-38540)
- Revert "wifi: mac80211: fix RCU list iterations"
- net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
uvc_parse_format
- filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
- signal: restore the override_rlimit logic (CVE-2024-50271)
- usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
- usb: dwc3: fix fault at system suspend if device was already runtime
suspended
- usb: typec: fix potential out of bounds in
ucsi_ccg_update_set_new_cam_cmd()
- USB: serial: io_edgeport: fix use after free in debug printk
(CVE-2024-50267)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx
- USB: serial: option: add Fibocom FG132 0x0112 composition
- USB: serial: option: add Quectel RG650V
- irqchip/gic-v3: Force propagation of the active state with a read-back
- ocfs2: remove entry once instead of null-ptr-dereference in
ocfs2_xa_remove()
- ucounts: fix counter leak in inc_rlimit_get_ucounts()
- [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
- net: sched: use RCU read-side critical section in taprio_dump()
(CVE-2024-50126)
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
- vsock/virtio: Initialization of the dangling pointer occurring in
vsk->trans
- media: amphion: Fix VPU core alias name
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
- Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
- Revert "Bluetooth: hci_sync: Fix overwriting request callback"
- Revert "Bluetooth: af_bluetooth: Fix deadlock"
- Revert "Bluetooth: hci_core: Fix possible buffer overflow"
- Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
(Closes: #
1086447)
- 9p: Avoid creating multiple slab caches with the same name
- nvme: tcp: avoid race between queue_lock lock and destroy
- block: Fix elevator_get_default() checking for NULL q->tag_set
- HID: multitouch: Add support for B2402FVA track point
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
- nvme: disable CC.CRIME (NVME_CC_CRIME)
- bpf: use kvzmalloc to allocate BPF verifier environment
- crypto: api - Fix liveliness check in crypto_alg_tested
- [arm*] crypto: marvell/cesa - Disable hash algorithms
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
- drm/vmwgfx: Limit display layout ioctl array size to
VMWGFX_NUM_DISPLAY_UNITS
- nvme-multipath: defer partition scanning (CVE-2024-53093)
- [powerpc*] powernv: Free name on error in opal_event_init()
- nvme: make keep-alive synchronous operation
- bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
- fs: Fix uninitialized value issue in from_kuid and from_kgid
- HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
- HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
- md/raid10: improve code of mrdev in raid10_sync_request
- io_uring: fix possible deadlock in io_register_iowq_max_workers()
(CVE-2024-41080)
- uprobes: encapsulate preparation of uprobe args buffer
- uprobe: avoid out-of-bounds memory access of fetching args
(CVE-2024-50067)
- drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
- ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
- Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
- mm: krealloc: Fix MTE false alarm in __do_krealloc
- [x86] platform/x86: x86-android-tablets: Fix use after free on
platform_device_register() errors (CVE-2024-49986)
- fs/ntfs3: Fix general protection fault in run_is_mapped_full
(CVE-2024-50243)
- 9p: fix slab cache name creation for real
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
- netlink: terminate outstanding dump on socket close
- [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
- mptcp: error out earlier on disconnect
- net/mlx5: fs, lock FTE when checking if active
- net/mlx5e: kTLS, Fix incorrect page refcounting
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
- virtio/vsock: Fix accept_queue memory leak
- Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
- Bluetooth: hci_core: Fix calling mgmt_device_connected
- net/sched: cls_u32: replace int refcounts with proper refcounts
- net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
hnodes.
- bonding: add ns target multicast address to slave device
- [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
- [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
- mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
- ocfs2: uncache inode which has failed entering the group
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
- ima: fix buffer overrun in ima_eventdigest_init_common
- [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
disabled
- [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
- [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
CONFIG_BROKEN
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
- ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
- ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
- ocfs2: fix UBSAN warning in ocfs2_verify_volume()
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
- Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
- mmc: sunxi-mmc: Fix A100 compatible description
- drm/bridge: tc358768: Fix DSI command tx
- drm/amd: Fix initialization mistake for NBIO 7.7.0
- staging: vchiq_arm: Get the rid off struct vchiq_2835_state
- staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
- fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
- Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
- lib/buildid: Fix build ID parsing logic
- cxl/pci: fix error code in __cxl_hdm_decode_init()
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
- NFSD: Async COPY result needs to return a write verifier
- NFSD: Limit the number of concurrent async COPY operations
(CVE-2024-49974)
- NFSD: Initialize struct nfsd4_copy earlier
- NFSD: Never decrement pending_async_copies on error
- mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
- mptcp: define more local variables sk
- mptcp: add userspace_pm_lookup_addr_by_id helper
- mptcp: update local address flags when setting it
- mptcp: hold pm lock when deleting entry
- mptcp: drop lookup_by_id in lookup_addr
- mptcp: pm: use _rcu variant under rcu_read_lock
- ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
- ksmbd: fix potencial out-of-bounds when buffer offset is invalid
(CVE-2024-26952)
- net: add copy_safe_from_sockptr() helper
- nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
- fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
- ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
- net/sched: taprio: extend minimum interval restriction to entire cycle too
(CVE-2024-36244)
- net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
- mm: revert "mm: shmem: fix data-race in shmem_getattr()"
- mm: avoid unsafe VMA hook invocation when error arises on mmap hook
- mm: unconditionally close VMAs on error
- mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
- mm: resolve faulty mmap_region() error path behaviour
- drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
- char: xillybus: Prevent use-after-free due to race condition
(CVE-2022-45888)
- null_blk: Remove usage of the deprecated ida_simple_xx() API
- null_blk: fix null-ptr-dereference while configuring 'power' and
'submit_queues' (CVE-2024-36478)
- null_blk: Fix return value of nullb_device_power_store()
- parisc: fix a possible DMA corruption (CVE-2024-44949)
- char: xillybus: Fix trivial bug with mutex
- net: Make copy_safe_from_sockptr() match documentation
[ Salvatore Bonaccorso ]
* Bump ABI to 28
* [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
(Closes: #
1085762)
[dgit import unpatched linux 6.1.119-1]
projects / linux.git / log