[ANNOUNCE] Release v4.4.302-cip72, v4.19.271-cip90 and v5.10.165-cip25

Hi,

CIP kernel team has released Linux kernel v4.4.302-cip72, v4.19.271-cip90 and v5.10.165-cip25.
The linux-4.4.y-cip tree has been updated base version to v4.4-st37, and the linux-4.19.y-cip tree has been updated base version from v4.19.270 to v4.19.271, and the linux-5.10.y-cip tree has been updated base version from
v5.10.162 to v5.10.165.

You can get this release via the git tree at:

v4.4.302-cip72:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-4.4.y-cip
commit hash:
0af99ca381ce97af181eab7f6fc808b1e039ac3d
Fixed CVEs:
CVE-2022-3524: tcp/udp: Fix memory leak in ipv6_renew_options().
CVE-2022-40768: scsi: stex: properly zero out the passthrough command structure
CVE-2022-3646: nilfs2: fix leak of nilfs_root in case of writer thread creation failure
CVE-2022-2663: netfilter: nf_conntrack_irc: Tighten matching on DCC message
CVE-2022-3628: wifi: Fix potential buffer overflow in 'brcmf_fweh_event_worker'
CVE-2022-41849: video: fbdev: smscufx: Fix use-after-free in ufx_ops_open()
CVE-2022-45934: Bluetooth: L2CAP: Fix u8 overflow
CVE-2022-4378: Linux kernel stack-based buffer overflow in __do_proc_dointvec
CVE-2022-3424: misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os
CVE-2022-3621: nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level()
CVE-2022-42329: xen/netback: don't call kfree_skb() with interrupts disabled
CVE-2022-42328: xen/netback: don't call kfree_skb() with interrupts disabled
CVE-2022-3649: nilfs2: fix use-after-free bug of struct nilfs_root
CVE-2022-3542: bnx2x: fix potential memory leak in bnx2x_tpa_stop()
CVE-2022-39842: video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
CVE-2022-41850: HID: roccat: Fix Use-After-Free in roccat_read
CVE-2022-42896: Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM
CVE-2022-3594: r8152: Rate limit overflow messages
CVE-2023-0047: Out of memory in local cgroup's memory may cause denial of service outside its area
CVE-2022-43750: usb: mon: make mmapped memory read only
CVE-2022-3565: mISDN: fix use-after-free bugs in l1oip timer handlers
CVE-2022-42895: Bluetooth: L2CAP: Fix attempting to access uninitialized memory
CVE-2022-3643: xen/netback: Ensure protocol headers don't fall in the non-linear area
CVE-2022-3643: xen/netback: Ensure protocol headers don't fall in the non-linear area
CVE-2022-36280: An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx
CVE-2022-2978: fs: fix UAF/GPF bug in nilfs_mdt_destroy
CVE-2022-3564: Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu
added commits:
CIP: Bump version suffix to -cip72 after merge from cip/linux-4.4.y-st tree

v4.19.271-cip90:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-4.19.y-cip
commit hash:
6cd0670e124d09e80f2daaf2ecb13922a603f30d
Fixed CVEs:
None
added commits:
CIP: Bump version suffix to -cip90 after merge from stable

v5.10.165-cip25:
repository:
https://git.kernel.org/pub/scm/linux/kernel/git/cip/linux-cip.git
branch:
linux-5.10.y-cip
commit hash:
52aae1dc6afe62fedb14c89fd4feca1d8bb13416
Fixed CVEs:
CVE-2023-0266: ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF
CVE-2022-41218: media: dvb-core: Fix UAF due to refcount races at releasing
CVE-2023-23455: net: sched: atm: dont intepret cls results when asked to drop
CVE-2023-23454: net: sched: cbq: dont intepret cls results when asked to drop
CVE-2022-3424: misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os
CVE-2022-47929: net: sched: disallow noqueue for qdisc classes
CVE-2022-36280: drm/vmwgfx: Validate the box size for the snooped cursor
CVE-2022-3534: libbpf: Fix use-after-free in btf_dump_name_dups
CVE-2023-0179: netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits
CVE-2023-0394: ipv6: raw: Deduct extension header length in rawv6_push_pending_frames
added commits:
CIP: Bump version suffix to -cip25 after merge from stable

Best regards,
Nobuhiro