usb: storage: Fix memory leak in USB bulk transport

usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths

drm/amd/display: Check NULL before accessing

libceph: fix potential use-after-free in have_mon_and_osd_map()

libceph: prevent potential out-of-bounds writes in handle_auth_session_key()

libceph: replace BUG_ON with bounds check for map->max_osd

usb: gadget: udc: fix use-after-free in usb_gadget_state_work

ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list

bfs: Reconstruct file type when loading from disk

nvme: fix admin request_queue lifetime

ext4: refresh inline data size before write operations

ksmbd: ipc: fix use-after-free in ipc_msg_send_request

ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock()

KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced

comedi: multiq3: sanitize config options in multiq3_attach()

comedi: check device's attached status in compat ioctls

staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser

staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing

staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing

binfmt_misc: restore write access before closing files opened by open_exec()