Chromium: CVE-2026-2323 Inappropriate implementation in Downloads

espintcp: Fix race condition in espintcp_close()

romfs: check sb_set_blocksize() return value

platform/x86: classmate-laptop: Add missing NULL pointer checks

fbdev: smscufx: properly copy ioctl memory to kernelspace

f2fs: fix out-of-bounds access in sysfs attribute read/write

f2fs: fix to avoid UAF in f2fs_write_end_io()

f2fs: fix to avoid mapping wrong physical block for swapfile

netfilter: nf_tables: fix use-after-free in nf_tables_addchain()

smb: client: split cached_fid bitfields to avoid shared-byte RMW races

Chromium: CVE-2026-2322 Heap buffer overflow in Codecs

crypto: virtio - Add spinlock protection with virtqueue notification

smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection()

drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free

ksmbd: add chann_lock to protect ksmbd_chann_list xarray

sched/mmcid: Don't assume CID is CPU owned on mode switch

erofs: fix UAF issue for file-backed mounts w/ directio option

xfs: fix UAF in xchk_btree_check_block_owner

crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly

bus: fsl-mc: fix use-after-free in driver_override_show()