diff -u linux-azure-5.15-5.15.0/debian.azure-5.15/changelog linux-azure-5.15-5.15.0/debian.azure-5.15/changelog
--- linux-azure-5.15-5.15.0/debian.azure-5.15/changelog
+++ linux-azure-5.15-5.15.0/debian.azure-5.15/changelog
@@ -1,3 +1,21 @@
+linux-azure-5.15 (5.15.0-1064.73~20.04.1) focal; urgency=medium
+
+  * focal/linux-azure-5.15: 5.15.0-1064.73~20.04.1 -proposed tracker
+    (LP: #2063588)
+
+  [ Ubuntu: 5.15.0-1064.73 ]
+
+  * jammy/linux-azure: 5.15.0-1064.73 -proposed tracker (LP: #2063589)
+  * jammy/linux: 5.15.0-107.117 -proposed tracker (LP: #2063635)
+  * CVE-2023-52530
+    - wifi: mac80211: fix potential key use-after-free
+  * CVE-2024-26622
+    - tomoyo: fix UAF write bug in tomoyo_write_control()
+  * CVE-2023-47233
+    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
+
+ -- Yuxuan Luo <yuxuan.luo@canonical.com>  Wed, 01 May 2024 16:40:18 -0400
+
 linux-azure-5.15 (5.15.0-1063.72~20.04.1) focal; urgency=medium
 
   * focal/linux-azure-5.15: 5.15.0-1063.72~20.04.1 -proposed tracker
diff -u linux-azure-5.15-5.15.0/debian.azure-5.15/tracking-bug linux-azure-5.15-5.15.0/debian.azure-5.15/tracking-bug
--- linux-azure-5.15-5.15.0/debian.azure-5.15/tracking-bug
+++ linux-azure-5.15-5.15.0/debian.azure-5.15/tracking-bug
@@ -1 +1 @@
-2061766 2024.04.01-3
+2063588 s2024.04.01-1
diff -u linux-azure-5.15-5.15.0/debian.azure/changelog linux-azure-5.15-5.15.0/debian.azure/changelog
--- linux-azure-5.15-5.15.0/debian.azure/changelog
+++ linux-azure-5.15-5.15.0/debian.azure/changelog
@@ -1,3 +1,19 @@
+linux-azure (5.15.0-1064.73) jammy; urgency=medium
+
+  * jammy/linux-azure: 5.15.0-1064.73 -proposed tracker (LP: #2063589)
+
+  [ Ubuntu: 5.15.0-107.117 ]
+
+  * jammy/linux: 5.15.0-107.117 -proposed tracker (LP: #2063635)
+  * CVE-2023-52530
+    - wifi: mac80211: fix potential key use-after-free
+  * CVE-2024-26622
+    - tomoyo: fix UAF write bug in tomoyo_write_control()
+  * CVE-2023-47233
+    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
+
+ -- Tim Gardner <tim.gardner@canonical.com>  Tue, 30 Apr 2024 08:02:51 -0600
+
 linux-azure (5.15.0-1063.72) jammy; urgency=medium
 
   * jammy/linux-azure: 5.15.0-1063.72 -proposed tracker (LP: #2061767)
diff -u linux-azure-5.15-5.15.0/debian.azure/tracking-bug linux-azure-5.15-5.15.0/debian.azure/tracking-bug
--- linux-azure-5.15-5.15.0/debian.azure/tracking-bug
+++ linux-azure-5.15-5.15.0/debian.azure/tracking-bug
@@ -1 +1 @@
-2061767 2024.04.01-3
+2063589 s2024.04.01-1
diff -u linux-azure-5.15-5.15.0/debian.master/changelog linux-azure-5.15-5.15.0/debian.master/changelog
--- linux-azure-5.15-5.15.0/debian.master/changelog
+++ linux-azure-5.15-5.15.0/debian.master/changelog
@@ -1,3 +1,18 @@
+linux (5.15.0-107.117) jammy; urgency=medium
+
+  * jammy/linux: 5.15.0-107.117 -proposed tracker (LP: #2063635)
+
+  * CVE-2023-52530
+    - wifi: mac80211: fix potential key use-after-free
+
+  * CVE-2024-26622
+    - tomoyo: fix UAF write bug in tomoyo_write_control()
+
+  * CVE-2023-47233
+    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
+
+ -- Stefan Bader <stefan.bader@canonical.com>  Fri, 26 Apr 2024 13:35:57 +0200
+
 linux (5.15.0-106.116) jammy; urgency=medium
 
   * jammy/linux: 5.15.0-106.116 -proposed tracker (LP: #2061812)
diff -u linux-azure-5.15-5.15.0/debian.master/tracking-bug linux-azure-5.15-5.15.0/debian.master/tracking-bug
--- linux-azure-5.15-5.15.0/debian.master/tracking-bug
+++ linux-azure-5.15-5.15.0/debian.master/tracking-bug
@@ -1 +1 @@
-2061812 2024.04.01-3
+2063635 s2024.04.01-1
diff -u linux-azure-5.15-5.15.0/debian/changelog linux-azure-5.15-5.15.0/debian/changelog
--- linux-azure-5.15-5.15.0/debian/changelog
+++ linux-azure-5.15-5.15.0/debian/changelog
@@ -1,3 +1,21 @@
+linux-azure-5.15 (5.15.0-1064.73~20.04.1) focal; urgency=medium
+
+  * focal/linux-azure-5.15: 5.15.0-1064.73~20.04.1 -proposed tracker
+    (LP: #2063588)
+
+  [ Ubuntu: 5.15.0-1064.73 ]
+
+  * jammy/linux-azure: 5.15.0-1064.73 -proposed tracker (LP: #2063589)
+  * jammy/linux: 5.15.0-107.117 -proposed tracker (LP: #2063635)
+  * CVE-2023-52530
+    - wifi: mac80211: fix potential key use-after-free
+  * CVE-2024-26622
+    - tomoyo: fix UAF write bug in tomoyo_write_control()
+  * CVE-2023-47233
+    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
+
+ -- Yuxuan Luo <yuxuan.luo@canonical.com>  Wed, 01 May 2024 16:40:18 -0400
+
 linux-azure-5.15 (5.15.0-1063.72~20.04.1) focal; urgency=medium
 
   * focal/linux-azure-5.15: 5.15.0-1063.72~20.04.1 -proposed tracker
diff -u linux-azure-5.15-5.15.0/debian/control linux-azure-5.15-5.15.0/debian/control
--- linux-azure-5.15-5.15.0/debian/control
+++ linux-azure-5.15-5.15.0/debian/control
@@ -56,7 +56,7 @@
 XS-Testsuite: autopkgtest
 #XS-Testsuite-Depends: gcc-4.7 binutils
 
-Package: linux-azure-5.15-headers-5.15.0-1063
+Package: linux-azure-5.15-headers-5.15.0-1064
 Build-Profiles: <!stage1>
 Architecture: all
 Multi-Arch: foreign
@@ -66,46 +66,46 @@
 Description: Header files related to Linux kernel version 5.15.0
  This package provides kernel header files for version 5.15.0, for sites
  that want the latest kernel headers. Please read
- /usr/share/doc/linux-azure-5.15-headers-5.15.0-1063/debian.README.gz for details
+ /usr/share/doc/linux-azure-5.15-headers-5.15.0-1064/debian.README.gz for details
 
-Package: linux-azure-5.15-tools-5.15.0-1063
+Package: linux-azure-5.15-tools-5.15.0-1064
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
 Priority: optional
 Depends: ${misc:Depends}, ${shlibs:Depends}, linux-tools-common
-Description: Linux kernel version specific tools for version 5.15.0-1063
+Description: Linux kernel version specific tools for version 5.15.0-1064
  This package provides the architecture dependant parts for kernel
  version locked tools (such as perf and x86_energy_perf_policy) for
- version 5.15.0-1063 on
+ version 5.15.0-1064 on
  64 bit x86.
- You probably want to install linux-tools-5.15.0-1063-<flavour>.
+ You probably want to install linux-tools-5.15.0-1064-<flavour>.
 
-Package: linux-azure-5.15-cloud-tools-5.15.0-1063
+Package: linux-azure-5.15-cloud-tools-5.15.0-1064
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
 Priority: optional
 Depends: ${misc:Depends}, ${shlibs:Depends}, linux-cloud-tools-common
-Description: Linux kernel version specific cloud tools for version 5.15.0-1063
+Description: Linux kernel version specific cloud tools for version 5.15.0-1064
  This package provides the architecture dependant parts for kernel
- version locked tools for cloud tools for version 5.15.0-1063 on
+ version locked tools for cloud tools for version 5.15.0-1064 on
  64 bit x86.
- You probably want to install linux-cloud-tools-5.15.0-1063-<flavour>.
+ You probably want to install linux-cloud-tools-5.15.0-1064-<flavour>.
 
 
 
-Package: linux-image-unsigned-5.15.0-1063-azure
+Package: linux-image-unsigned-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: kernel
 Priority: optional
 Provides: linux-image, fuse-module, kvm-api-4, redhat-cluster-modules, ivtv-modules, virtualbox-guest-modules [amd64], ${linux:rprovides}
-Depends: ${misc:Depends}, ${shlibs:Depends}, kmod, linux-base (>= 4.5ubuntu1~16.04.1), linux-modules-5.15.0-1063-azure
+Depends: ${misc:Depends}, ${shlibs:Depends}, kmod, linux-base (>= 4.5ubuntu1~16.04.1), linux-modules-5.15.0-1064-azure
 Recommends: grub-pc [amd64] | grub-efi-amd64 [amd64] | grub-efi-ia32 [amd64] | grub [amd64] | flash-kernel [arm64] | grub-efi-arm64 [arm64]
 Breaks: flash-kernel (<< 3.0~rc.4ubuntu64) [arm64]
-Conflicts: linux-image-5.15.0-1063-azure
-Suggests: fdutils, linux-azure-5.15-doc-5.15.0 | linux-azure-5.15-source-5.15.0, linux-azure-5.15-tools, linux-headers-5.15.0-1063-azure, initramfs-tools | linux-initramfs-tool
+Conflicts: linux-image-5.15.0-1064-azure
+Suggests: fdutils, linux-azure-5.15-doc-5.15.0 | linux-azure-5.15-source-5.15.0, linux-azure-5.15-tools, linux-headers-5.15.0-1064-azure, initramfs-tools | linux-initramfs-tool
 Description: Linux kernel image for version 5.15.0 on 64 bit x86 SMP
  This package contains the unsigned Linux kernel image for version 5.15.0 on
  64 bit x86 SMP.
@@ -118,7 +118,7 @@
  the linux-azure meta-package, which will ensure that upgrades work
  correctly, and that supporting packages are also installed.
 
-Package: linux-modules-5.15.0-1063-azure
+Package: linux-modules-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: kernel
@@ -138,12 +138,12 @@
  the linux-azure meta-package, which will ensure that upgrades work
  correctly, and that supporting packages are also installed.
 
-Package: linux-modules-extra-5.15.0-1063-azure
+Package: linux-modules-extra-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: kernel
 Priority: optional
-Depends: ${misc:Depends}, ${shlibs:Depends}, linux-image-5.15.0-1063-azure | linux-image-unsigned-5.15.0-1063-azure, crda | wireless-crda
+Depends: ${misc:Depends}, ${shlibs:Depends}, linux-image-5.15.0-1064-azure | linux-image-unsigned-5.15.0-1064-azure, crda | wireless-crda
 Description: Linux kernel extra modules for version 5.15.0 on 64 bit x86 SMP
  This package contains the Linux kernel extra modules for version 5.15.0 on
  64 bit x86 SMP.
@@ -160,21 +160,21 @@
  the linux-azure meta-package, which will ensure that upgrades work
  correctly, and that supporting packages are also installed.
 
-Package: linux-headers-5.15.0-1063-azure
+Package: linux-headers-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
 Priority: optional
-Depends: ${misc:Depends}, linux-azure-5.15-headers-5.15.0-1063, ${shlibs:Depends}
+Depends: ${misc:Depends}, linux-azure-5.15-headers-5.15.0-1064, ${shlibs:Depends}
 Provides: linux-headers, linux-headers-3.0
 Description: Linux kernel headers for version 5.15.0 on 64 bit x86 SMP
  This package provides kernel header files for version 5.15.0 on
  64 bit x86 SMP.
  .
  This is for sites that want the latest kernel headers.  Please read
- /usr/share/doc/linux-headers-5.15.0-1063/debian.README.gz for details.
+ /usr/share/doc/linux-headers-5.15.0-1064/debian.README.gz for details.
 
-Package: linux-image-unsigned-5.15.0-1063-azure-dbgsym
+Package: linux-image-unsigned-5.15.0-1064-azure-dbgsym
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
@@ -191,27 +191,27 @@
  is uncompressed, and unstripped. This package also includes the
  unstripped modules.
 
-Package: linux-tools-5.15.0-1063-azure
+Package: linux-tools-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
 Priority: optional
-Depends: ${misc:Depends}, linux-azure-5.15-tools-5.15.0-1063
-Description: Linux kernel version specific tools for version 5.15.0-1063
+Depends: ${misc:Depends}, linux-azure-5.15-tools-5.15.0-1064
+Description: Linux kernel version specific tools for version 5.15.0-1064
  This package provides the architecture dependant parts for kernel
  version locked tools (such as perf and x86_energy_perf_policy) for
- version 5.15.0-1063 on
+ version 5.15.0-1064 on
  64 bit x86.
 
-Package: linux-cloud-tools-5.15.0-1063-azure
+Package: linux-cloud-tools-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: devel
 Priority: optional
-Depends: ${misc:Depends}, linux-azure-5.15-cloud-tools-5.15.0-1063
-Description: Linux kernel version specific cloud tools for version 5.15.0-1063
+Depends: ${misc:Depends}, linux-azure-5.15-cloud-tools-5.15.0-1064
+Description: Linux kernel version specific cloud tools for version 5.15.0-1064
  This package provides the architecture dependant parts for kernel
- version locked tools for cloud for version 5.15.0-1063 on
+ version locked tools for cloud for version 5.15.0-1064 on
  64 bit x86.
 
 Package: linux-udebs-azure
@@ -225,7 +225,7 @@
  for easier version and migration tracking.
 
 
-Package: linux-buildinfo-5.15.0-1063-azure
+Package: linux-buildinfo-5.15.0-1064-azure
 Build-Profiles: <!stage1>
 Architecture: amd64 arm64
 Section: kernel
diff -u linux-azure-5.15-5.15.0/drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c linux-azure-5.15-5.15.0/drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c
--- linux-azure-5.15-5.15.0/drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c
+++ linux-azure-5.15-5.15.0/drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c
@@ -790,8 +790,7 @@
 	scan_request = cfg->scan_request;
 	cfg->scan_request = NULL;
 
-	if (timer_pending(&cfg->escan_timeout))
-		del_timer_sync(&cfg->escan_timeout);
+	timer_delete_sync(&cfg->escan_timeout);
 
 	if (fw_abort) {
 		/* Do a scan abort to stop the driver's scan engine */
@@ -7781,6 +7780,7 @@
 	brcmf_btcoex_detach(cfg);
 	wiphy_unregister(cfg->wiphy);
 	wl_deinit_priv(cfg);
+	cancel_work_sync(&cfg->escan_timeout_work);
 	brcmf_free_wiphy(cfg->wiphy);
 	kfree(cfg);
 }
diff -u linux-azure-5.15-5.15.0/net/mac80211/cfg.c linux-azure-5.15-5.15.0/net/mac80211/cfg.c
--- linux-azure-5.15-5.15.0/net/mac80211/cfg.c
+++ linux-azure-5.15-5.15.0/net/mac80211/cfg.c
@@ -511,6 +511,9 @@
 		sta->cipher_scheme = cs;
 
 	err = ieee80211_key_link(key, sdata, sta);
+	/* KRACK protection, shouldn't happen but just silently accept key */
+	if (err == -EALREADY)
+		err = 0;
 
  out_unlock:
 	mutex_unlock(&local->sta_mtx);
only in patch2:
unchanged:
--- linux-azure-5.15-5.15.0.orig/net/mac80211/key.c
+++ linux-azure-5.15-5.15.0/net/mac80211/key.c
@@ -843,7 +843,7 @@
 	 */
 	if (ieee80211_key_identical(sdata, old_key, key)) {
 		ieee80211_key_free_unused(key);
-		ret = 0;
+		ret = -EALREADY;
 		goto out;
 	}
 
only in patch2:
unchanged:
--- linux-azure-5.15-5.15.0.orig/security/tomoyo/common.c
+++ linux-azure-5.15-5.15.0/security/tomoyo/common.c
@@ -2657,13 +2657,14 @@
 {
 	int error = buffer_len;
 	size_t avail_len = buffer_len;
-	char *cp0 = head->write_buf;
+	char *cp0;
 	int idx;
 
 	if (!head->write)
 		return -EINVAL;
 	if (mutex_lock_interruptible(&head->io_sem))
 		return -EINTR;
+	cp0 = head->write_buf;
 	head->read_user_buf_avail = 0;
 	idx = tomoyo_read_lock();
 	/* Read a line and dispatch it to the policy handler. */