SUSE-SU-2019:2450-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:2450-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2019:2450-1

Related

Published

2019-09-24T11:56:26Z

Modified

2019-09-24T11:56:26Z

Summary

Security update for the Linux Kernel

Details

The SUSE Linux Enterprise Server 12 SP4 Realtime Kernel was updated to fix bugs and security issues.

Security issues fixed:

CVE-2019-12614: An issue was discovered in dlparparsecc_property in arch/powerpc/platforms/pseries/dlpar.c. There was an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash) (bnc#1137194).
CVE-2018-16871: A NULL pointer dereference due to an anomalized NFS message sequence was fixed. (bnc#1137103).
CVE-2018-20836: There was a race condition in smptasktimedout() and smptaskdone() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free (bnc#1134395).
CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bnc#1136424).
CVE-2018-20855: An issue was discovered in createqpcommon in drivers/infiniband/hw/mlx5/qp.c, mlx5ibcreateqpresp was never initialized, resulting in a leak of stack memory to userspace (bsc#1143045).
CVE-2019-11810: A NULL pointer dereference can occur when megasascreateframepool() fails in megasasalloccmds() in drivers/scsi/megaraid/megaraidsas_base.c. This causes a Denial of Service, related to a use-after-free (bsc#1134399).
CVE-2019-14283: The function set_geometry in drivers/block/floppy.c did not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy disk has been inserted. NOTE: QEMU creates the floppy device by default (bsc#1143191).
CVE-2019-14284: The drivers/block/floppy.c allowed a denial of service by setupformatparams division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make FSECTPER_TRACK be zero. Next, the floppy format operation should be called. It can be triggered by an unprivileged local user even when a floppy disk has not been inserted. NOTE: QEMU creates the floppy device by default (bsc#1143189).
CVE-2019-13631: In parsehidreport_descriptor in drivers/input/tablet/gtco.c, a malicious USB device can send an HID report that triggers an out-of-bounds write during generation of debugging messages (bsc#1142023).
CVE-2019-1125: Enable Spectre v1 mitigations for SWAPGS (bsc#1139358).
CVE-2019-10126: A flaw was found in the Linux kernel that might lead to memory corruption in the marvell mwifiex driver. (bnc#1136935)
CVE-2019-10638: In the Linux kernel, a device could be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic was sent to multiple destination IP addresses, it was possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses. (bnc#1140575)
CVE-2019-10639: The Linux kernel allowed Information Exposure (partial kernel address disclosure), leading to a KASLR bypass. Specifically, it was possible to extract the KASLR kernel image offset using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic was sent to multiple destination IP addresses, it was possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). This key contains enough bits from a kernel address (of a static variable) so when the key was extracted (via enumeration), the offset of the kernel image is exposed. This attack can be carried out remotely, by the attacker forcing the target device to send UDP or ICMP (or certain other) traffic to attacker-controlled IP addresses. Forcing a server to send UDP traffic is trivial if the server is a DNS server. ICMP traffic is trivial if the server answers ICMP Echo requests (ping). For client targets, if the target visited the attacker's web page, then WebRTC or gQUIC could be used to force UDP traffic to attacker-controlled IP addresses. NOTE: this attack against KASLR became viable because IP ID generation was changed to have a dependency on an address associated with a network namespace. (bnc#1140577)
CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. (bsc#1137586)
CVE-2019-11478: It was possible to send a crafted sequence of SACKs which will fragment the TCP retransmission queue. An attacker may have been able to further exploit the fragmented queue to cause an expensive linked-list walk for subsequent SACKs received for that same TCP connection.
CVE-2019-11599: The coredump implementation in the Linux kernel did not use locking or other mechanisms to prevent vma layout or vma flags changes while it ran, which allowed local users to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a race condition with mmgetnotzero or gettaskmm calls. This is related to fs/userfaultfd.c, mm/mmap.c, fs/proc/taskmmu.c, and drivers/infiniband/core/uverbsmain.c. (bnc#1133738)
CVE-2019-12380: An issue was discovered in the efi subsystem in the Linux kernel physefisetvirtualaddressmap in arch/x86/platform/efi/efi.c and eficallphysprolog in arch/x86/platform/efi/efi_64.c mishandle memory allocation failures. NOTE: This id is disputed as not being an issue because All the code touched by the referenced commit runs only at boot, before any user processes are started. Therefore, there is no possibility for an unprivileged user to control it. (bnc#1136598)
CVE-2019-12456: a double-fetch bug in ctlioctl_main() could allow local users to create a denial of service (bsc#1136922).
CVE-2019-12818: The nfcllcpbuildtlv function in net/nfc/llcpcommands.c may return NULL. If the caller does not check for this, it will trigger a NULL pointer dereference. This will cause denial of service. This used to affect nfcllcpbuildgb in net/nfc/llcpcore.c. (bsc#1138293)
CVE-2019-12819: The function _mdiobusregister() called putdevice(), which triggered a fixedmdiobusinit use-after-free. This would cause a denial of service. (bsc#1138291)
CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware transactional memory was disabled, a local user can cause a denial of service via a sigreturn() system call that sends a crafted signal frame. (bnc#1142265)

Other issues fixed:

6lowpan: Off by one handling ->nexthdr (bsc#1051510).
Abort fileremoveprivs() for non-reg. files (bsc#1140888).
acpi: Add Hygon Dhyana support (fate#327735).
acpi: fix menuconfig presentation of acpi submenu (bsc#1117158).
acpi/nfit: Always dump _DSM output payload (bsc#1142351).
acpi: PM: Allow transitions to D0 to occur in special cases (bsc#1051510).
acpi: PM: Avoid evaluating _PS3 on transitions from D3hot to D3cold (bsc#1051510).
acpi / property: fix handling of datanodes in acpigetnextsubnode() (bsc#1051510).
Add back sibling paca poiter to paca (bsc#1055117).
added De0-Nanos-SoC board support (and others based on Altera SOC).
Add kernel-subpackage-build.spec (FATE#326579).
Add sample kernel-default-base spec file (FATE#326579, jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).
Add support for crct10dif-vpmsum (FATE#327696).
Add version information to KLP_SYMBOLS file
af_key: unconditionally clone on broadcast (bsc#1051510).
af_unix: remove redundant lockdep class (git-fixes).
alsa: compress: Be more restrictive about when a drain is allowed (bsc#1051510).
alsa: compress: Don't allow paritial drain operations on capture streams (bsc#1051510).
alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
alsa: compress: Prevent bypasses of set_params (bsc#1051510).
alsa: firewire-lib/fireworks: fix miss detection of received MIDI messages (bsc#1051510).
alsa: firewire-motu: fix destruction of data for isochronous resources (bsc#1051510).
alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
alsa: hda - Force polling mode on CNL for fixing codec communication (bsc#1051510).
alsa: hda/realtek: Add quirks for several Clevo notebook barebones (bsc#1051510).
alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#1051510).
alsa: hda/realtek - Change front mic location for Lenovo M710q (bsc#1051510).
alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#1051510).
alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
alsa: hda/realtek - Set default power save node to 0 (bsc#1051510).
alsa: hda/realtek - Update headset mode for ALC256 (bsc#1051510).
alsa: line6: Fix a typo (bsc#1051510).
alsa: line6: Fix write on zero-sized buffer (bsc#1051510).
alsa: line6: Fix wrong altsetting for LINE6PODHD5001 (bsc#1051510).
alsa: oxfw: allow PCM capture for Stanton SCS.1m (bsc#1051510).
alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
alsa: seq: fix incorrect order of destclient/destports arguments (bsc#1051510).
alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#1051510).
alsa: usb-audio: fix sign unintended sign extension on left shifts (bsc#1051510).
alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
apparmor: enforce nullbyte at end of tag string (bsc#1051510).
arch: arm64: acpi: KABI ginore includes (bsc#1117158 bsc#1134671).
arm64: acpi: fix alignment fault in accessing acpi (bsc#1117158).
arm64: fix acpi dependencies (bsc#1117158).
arm64, mm, efi: Account for GICv3 LPI tables in static memblock reserve table (bsc#1117158).
arm64/x86: Update config files.
ASoC : cs4265 : readable register too low (bsc#1051510).
ASoC: cs42xx8: Add regcache mask dirty (bsc#1051510).
ASoC: cx2072x: fix integer overflow on unsigned int multiply (bsc#1111666).
ASoC: eukrea-tlv320: fix a leaked reference by adding missing ofnodeput (bsc#1051510).
ASoC: fsl_asrc: Fix the issue about unsupported rate (bsc#1051510).
ASoC: fslsai: Update isslave_mode with correct value (bsc#1051510).
ASoC: fslutils: fix a leaked reference by adding missing ofnode_put (bsc#1051510).
ASoC: hdmi-codec: unlock the device on startup errors (bsc#1051510).
ASoC: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
ASoC: soc-pcm: BE dai needs prepare when pause release after resume (bsc#1051510).
ath6kl: add some bounds checking (bsc#1051510).
audit: fix a memory leak bug (bsc#1051510).
ax25: fix inconsistent lock state in ax25destroytimer (bsc#1051510).
batman-adv: allow updating DAT entry timeouts on incoming ARP Replies (bsc#1051510).
batman-adv: fix for leaked TVLV handler (bsc#1051510).
bcache: acquire bchregisterlock later in cacheddevdetach_finish() (bsc#1140652).
bcache: acquire bchregisterlock later in cacheddevfree() (bsc#1140652).
bcache: add code comments for journalreadbucket() (bsc#1140652).
bcache: Add comments for blkdev_put() in registration code path (bsc#1140652).
bcache: add comments for closurefn to be called in closurequeue() (bsc#1140652).
bcache: add comments for kobj release callback routine (bsc#1140652).
bcache: add comments for mutexlock(&b->writelock) (bsc#1140652).
bcache: add error check for calling register_bdev() (bsc#1140652).
bcache: add failure check to runcacheset() for journal replay (bsc#1140652).
bcache: add io error counting in writebdevsuper_endio() (bsc#1140652).
bcache: add more error message in bchcacheddev_attach() (bsc#1140652).
bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
bcache: add reclaimedjournalbuckets to struct cache_set (bsc#1140652).
bcache: add return value check to bchcacheddev_run() (bsc#1140652).
bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
bcache: avoid clang -Wunintialized warning (bsc#1140652).
bcache: avoid flushing btree node in cachesetflush() if io disabled (bsc#1140652).
bcache: avoid potential memleak of list of journalreplay(s) in the CACHESYNC branch of runcacheset (bsc#1140652).
bcache: check CACHESETIODISABLE bit in bchjournal() (bsc#1140652).
bcache: check CACHESETIO_DISABLE in allocator code (bsc#1140652).
bcache: check c->gcthread by ISERRORNULL in cachesetflush() (bsc#1140652).
bcache: Clean up bchgetcongested() (bsc#1140652).
bcache: destroy dc->writebackwritewq if failed to create dc->writeback_thread (bsc#1140652).
bcache: do not assign in if condition in bcachedeviceinit() (bsc#1140652).
bcache: don't set max writeback rate if gc is running (bsc#1140652).
bcache: fix a race between cache register and cacheset unregister (bsc#1140652).
bcache: fix crashes stopping bcache device before read miss done (bsc#1140652).
bcache: fix failure in journal relplay (bsc#1140652).
bcache: fix inaccurate result of unused buckets (bsc#1140652).
bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
bcache: fix potential deadlock in cacheddeffree() (bsc#1140652).
bcache: fix race in btreeflushwrite() (bsc#1140652).
bcache: fix return value error in bchjournalread() (bsc#1140652).
bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
bcache: fix wrong usage use-after-freed on keylist in outnocoalesce branch of btreegc_coalesce (bsc#1140652).
bcache: ignore read-ahead request failure on backing device (bsc#1140652).
bcache: improve bcache_reboot() (bsc#1140652).
bcache: improve error message in bchcacheddev_run() (bsc#1140652).
bcache: make bsetsearchtree() be more understandable (bsc#1140652).
bcache: make isdiscardenabled() static (bsc#1140652).
bcache: more detailed error message to bcachedevicelink() (bsc#1140652).
bcache: move definition of 'int ret' out of macro read_bucket() (bsc#1140652).
bcache: never set KEYPTRS of journal key to 0 in journalreclaim() (bsc#1140652).
bcache: only clear BTREENODEdirty bit when it is set (bsc#1140652).
bcache: only set BCACHEDEVWB_RUNNING when cached device attached (bsc#1140652).
bcache: performance improvement for btreeflushwrite() (bsc#1140652).
bcache: remove redundant LISTHEAD(journal) from runcache_set() (bsc#1140652).
bcache: remove retryflushwrite from struct cache_set (bsc#1140652).
bcache: remove unncessary code in bchbtreekeys_init() (bsc#1140652).
bcache: remove unnecessary prefetch() in bsetsearchtree() (bsc#1140652).
bcache: remove 'XXX:' comment line from runcacheset() (bsc#1140652).
bcache: return error immediately in bchjournalreplay() (bsc#1140652).
bcache: Revert 'bcache: fix high CPU occupancy during journal' (bsc#1140652).
bcache: Revert 'bcache: free heap cacheset->flushbtree in bchjournalfree' (bsc#1140652).
bcache: set largest seq to ja->seq[bucketindex] in journalread_bucket() (bsc#1140652).
bcache: shrink btree node cache after bchbtreecheck() (bsc#1140652).
bcache: stop writeback kthread and kworker when bchcacheddev_run() failed (bsc#1140652).
bcache: use sysfsmatchstring() instead of _sysfsmatch_string() (bsc#1140652).
be2net: Fix number of Rx queues used for flow hashing (networking-stable-190618).
be2net: Signal that the device cannot transmit during reconfiguration (bsc#1127315).
be2net: Synchronize beupdatequeues with dev_watchdog (bsc#1127315).
blk-mq: fix hang caused by freeze/unfreeze sequence (bsc#1128432).
blk-mq: free hw queue's resource in hctx's release handler (bsc#1140637).
block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
block: Fix a NULL pointer dereference in genericmakerequest() (bsc#1139771).
Bluetooth: Fix faulty expression for minimum encryption key size check (bsc#1140328).
bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
bnxten: Fix aggregation buffer leak under OOM condition (networking-stable-1905_31).
bonding: fix arpvalidate toggling in active-backup mode (networking-stable-1905_14).
bonding: Force slave speed check after link state recovery for 802.3ad (bsc#1137584).
bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#1083647).
brcmfmac: convert devinitlock mutex to completion (bsc#1051510).
brcmfmac: fix missing checks for kmemdup (bsc#1051510).
brcmfmac: fix Oops when bringing up interface during USB disconnect (bsc#1051510).
brcmfmac: fix race during disconnect when USB completion is in progress (bsc#1051510).
brcmfmac: fix WARNING during USB disconnect in case of unempty psq (bsc#1051510).
bridge: Fix error path for kobjectinitandadd() (networking-stable-1905_14).
btrfs: fix race between block group removal and block group allocation (bsc#1143003).
Build klp-symbols in kernel devel projects.
can: afcan: Fix error path of caninit() (bsc#1051510).
can: flexcan: fix timeout when set small bitrate (bsc#1051510).
can: purge socket error queue on sock destruct (bsc#1051510).
ceph: flush dirty inodes before proceeding with remount (bsc#1140405).
cfg80211: fix memory leak of wiphy device name (bsc#1051510).
cgroup: Use csstryget() instead of csstrygetonline() in taskget_css() (bsc#1141478).
chardev: add additional check for minor range overlap (bsc#1051510).
clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
clk: rockchip: Don't yell about bad mmc phases when getting (bsc#1051510).
clk: rockchip: Turn on 'aclk_dmac1' for suspend on rk3288 (bsc#1051510).
clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider (bsc#1051510).
coredump: fix race condition between collapsehugepage() and core dumping (bnc#1133738, CVE-2019-11599).
coredump: fix race condition between mmgetnotzero()/gettaskmm() and core dumping (bsc#1133738, CVE-2019-11599).
coresight: etb10: Fix handling of perf mode (bsc#1051510).
coresight: etm4x: Add support to enable ETMv4.2 (bsc#1051510).
Correct the CVE and bug reference for a floppy security fix (CVE-2019-14284,bsc#1143189)
Correct the patch reference tag for scsi fix (bsc#1136922 CVE-2019-12456)
cpufreq: acpi-cpufreq: Report if CPU doesn't support boost technologies (bsc#1051510).
cpufreq: Add Hygon Dhyana support (fate#327735).
cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ (fate#327735).
cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#1051510).
cpufreq: check if policy is inactive early in _cpufreqget() (bsc#1051510).
cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
cpufreq: Use struct kobjattribute instead of struct globalattr (bsc#1051510).
cpu/topology: Export die_id (jsc#SLE-5454).
crypto: algapi - guard against uninitialized spawn list in cryptoremovespawns (bsc#1133401).
crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#1051510).
crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#1051510).
crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
crypto: ccp - Fix SEVVERSIONGREATEROREQUAL (bsc#1051510).
crypto: ccp - fix the SEV probe in kexec boot path (bsc#1136896).
crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
crypto: ccp - Validate the the error value used to index error messages (bsc#1051510).
crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc#1051510).
crypto: cryptd - Fix skcipher instance memory leak (bsc#1051510).
crypto: crypto4xx - fix a potential double free in ppc4xxtrngprobe (bsc#1051510).
crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#1051510).
crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
crypto: talitos - fix CTR alg blocksize (bsc#1051510).
crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#1051510).
crypto: talitos - properly handle split ICV (bsc#1051510).
crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
crypto: talitos - rename alternative AEAD algos (bsc#1051510).
crypto: user - prevent operating on larval algorithms (bsc#1133401).
crypto: vmx - ghash: do nosimd fallback manually (bsc#1135661, bsc#1137162).
crypto: vmx - return correct error code on failed setkey (bsc#1135661, bsc#1137162).
dasd_fba: Display '00000000' for zero page when dumping sense (bsc#11123080).
dax: Fix xarray entry association for mixed mappings (bsc#1140893).
device core: Consolidate locking and unlocking of parent and device (bsc#1106383).
dmaengine: hsu: Revert 'set HSUCHMTSR to memory width' (bsc#1051510).
dmaengine: imx-sdma: remove BD_INTR for channel0 (bsc#1051510).
dm, dax: Fix detection of DAX support (bsc#1139782).
doc: Cope with the deprecation of AutoReporter (bsc#1051510).
docs: Fix conf.py for Sphinx 2.0 (bsc#1135642).
Documentation: Add MDS vulnerability documentation (bsc#1135642).
Documentation: Correct the possible MDS sysfs values (bsc#1135642).
Documentation: DMA-API: fix a function name of maxmappingsize (bsc#1140954).
Do not provide kernel-default from kernel-default-base (boo#1132154, bsc#1106751).
Do not provide kernel-default-srchash from kernel-default-base.
Don't restrict NFSv4.2 on openSUSE (bsc#1138719).
dpaaeth: fix SG frame cleanup (networking-stable-1905_14).
drbd: Avoid Clang warning about pointless switch statment (bsc#1051510).
drbd: disconnect, if the wrong UUIDs are attached on a connected peer (bsc#1051510).
drbd: narrow rcureadlock in drbdsynchandshake (bsc#1051510).
drbd: skip spurious timeout (ping-timeo) when failing promote (bsc#1051510).
driver core: Establish order of operations for deviceadd and devicedel via bitflag (bsc#1106383).
driver core: Probe devices asynchronously instead of the driver (bsc#1106383).
drivers: acpi: add dependency of EFI for arm64 (bsc#1117158).
drivers/base: Introduce kill_device() (bsc#1139865).
drivers/base: kABI fixes for struct device_private (bsc#1106383).
drivers: misc: fix out-of-bounds access in function paramsetkgdbts_var (bsc#1051510).
drivers/rapidio/devices/riomportcdev.c: fix resource leak in error handling path in 'riodmatransfer()' (bsc#1051510).
drivers/rapidio/riocm.c: fix potential oops in riocmch_listen() (bsc#1051510).
drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER (bsc#1051510).
drm/amdgpu: fix old fence check in amdgpufenceemit (bsc#1051510).
drm/amdgpu/gfx9: use reset default for PASCFIFO_SIZE (bsc#1051510).
drm/arm/hdlcd: Allow a bit of clock tolerance (bsc#1051510).
drm/drv: Hold ref on parent device during drm_device lifetime (bsc#1051510).
drm/gma500/cdv: Check vbt config bits when detecting lvds panels (bsc#1051510).
drm/i915/dmc: protect against reading random memory (bsc#1051510).
drm/i915/gvt: Fix cmd length of VEBDIIECP (bsc#1113722)
drm/i915/gvt: ignore unexpected pvinfo write (bsc#1051510).
drm/i915/gvt: refine ggtt range validation (bsc#1113722)
drm/i915/perf: fix whitelist on Gen10+ (bsc#1051510).
drm/i915/sdvo: Implement proper HDMI audio support for SDVO (bsc#1051510).
drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration (bsc#1051510).
drm/nouveau/i2c: Disable i2c bus access after ->fini() (bsc#1113722)
drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
drm/radeon: prefer lower reference dividers (bsc#1051510).
drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#1051510).
drm: Wake up next in drm_read() chain if we are forced to putback the event (bsc#1051510).
e1000e: start network tx queue only when link is up (bsc#1051510).
edac, amd64: Add Hygon Dhyana support (fate#327735).
edac/mc: Fix edacmcfind() in case no device is found (bsc#1114279).
efi: add API to reserve memory persistently across kexec reboot (bsc#1117158).
efi/arm: Defer persistent reservations until after paging_init() (bsc#1117158).
efi/arm: Don't mark acpi reclaim memory as MEMBLOCK_NOMAP (bsc#1117158 bsc#1115688 bsc#1120566).
efi/arm: libstub: add a root memreserve config table (bsc#1117158).
efi/arm: map UEFI memory map even w/o runtime services enabled (bsc#1117158).
efi/arm: preserve early mapping of UEFI memory map longer for BGRT (bsc#1117158).
efi/arm: Revert 'Defer persistent reservations until after paging_init()' (bsc#1117158).
efi/arm: Revert deferred unmap of early memmap mapping (bsc#1117158).
efi: honour memory reservations passed via a linux specific config table (bsc#1117158).
efi: Permit calling efimemreserve_persistent() from atomic context (bsc#1117158).
efi: Permit multiple entries in persistent memreserve data structure (bsc#1117158).
efi: Prevent GICv3 WARN() by mapping the memreserve table before first use (bsc#1117158).
efi: Reduce the amount of memblock reservations for persistent allocations (bsc#1117158).
efi/x86/Add missing error handling to old_memmap 1:1 mapping code (CVE-2019-12380,bsc#1136598).
ethtool: check the return value of getregslen (git-fixes).
ethtool: fix potential userspace buffer overflow (networking-stable-190609).
ext4: do not delete unlinked inode from orphan list on failed truncate (bsc#1140891).
extcon: arizona: Disable mic detect if running when driver is removed (bsc#1051510).
firmware: efi: factor out mem_reserve (bsc#1117158 bsc#1134671).
Fix kABI breakage by mwifiex security fix (CVE-2019-3846,bsc#1136424).
Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
Fix memory leak in sctpprocessinit (networking-stable-190609).
floppy: fix div-by-zero in setupformatparams (CVE-2019-14283,bsc#1143191).
floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283,bsc#1143191).
fork, memcg: fix cached_stacks case (bsc#1134097).
fork, memcg: fix crash in freethreadstack on memcg charge fail (bsc#1134097).
fs/ocfs2: fix race in ocfs2dentryattach_lock() (bsc#1140889).
fs/proc/proc_sysctl.c: Fix a NULL pointer dereference (bsc#1140887).
fs/proc/procsysctl.c: fix NULL pointer dereference in putlinks (bsc#1140887).
ftrace/x86: Remove possible deadlock between registerkprobe() and ftracerunupdatecode() (bsc#1071995 fate#323487).
fuse: fallocate: fix return with locked inode (bsc#1051510).
fuse: fix writepages on 32bit (bsc#1051510).
fuse: honor RLIMITFSIZE in fusefile_fallocate (bsc#1051510).
genirq: Prevent use-after-free and work list corruption (bsc#1051510).
genirq: Respect IRQCHIPSKIPSETWAKE in irqchipsetwake_parent() (bsc#1051510).
genwqe: Prevent an integer overflow in the ioctl (bsc#1051510).
git_sort: add crypto maintainer tree.
gpio: fix gpio-adp5588 build errors (bsc#1051510).
gpio: omap: fix lack of irqstatus_raw0 for OMAP4 (bsc#1051510).
gpio: Remove obsolete comment about gpiochipfreehogs() usage (bsc#1051510).
HID: input: fix a4tech horizontal wheel custom usage (bsc#1137429).
HID: logitech-hidpp: change low battery level threshold from 31 to 30 percent (bsc#1051510).
HID: logitech-hidpp: use RAP instead of FAP to get the protocol version (bsc#1051510).
HID: wacom: Add ability to provide explicit battery status info (bsc#1051510).
- HID: wacom: Add support for 3rd generation Intuos BT (bsc#1051510).

HID: wacom: Add support for Pro Pen slim (bsc#1051510).
HID: wacom: convert Wacom custom usages to standard HID usages (bsc#1051510).
HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth (bsc#1051510).
HID: wacom: correct touch resolution x/y typo (bsc#1051510).
HID: wacom: Don't report anything prior to the tool entering range (bsc#1051510).
HID: wacom: Don't set tool type until we're in range (bsc#1051510).
HID: wacom: fix mistake in printk (bsc#1051510).
HID: wacom: generic: add the 'Report Valid' usage (bsc#1051510).
HID: wacom: generic: Correct pad syncing (bsc#1051510).
HID: wacom: generic: Ignore HIDDGBATTERYSTRENTH == 0 (bsc#1051510).
HID: wacom: generic: Leave tool in prox until it completely leaves sense (bsc#1051510).
HID: wacom: generic: only switch the mode on devices with LEDs (bsc#1051510).
HID: wacom: generic: read HIDDGCONTACTMAX from any feature report (bsc#1051510).
HID: wacom: generic: Refactor generic battery handling (bsc#1051510).
HID: wacom: generic: Report AES battery information (bsc#1051510).
HID: wacom: generic: Reset events back to zero when pen leaves (bsc#1051510).
HID: wacom: generic: Scale battery capacity measurements to percentages (bsc#1051510).
HID: wacom: generic: Send BTNSTYLUS3 when both barrel switches are set (bsc#1051510).

HID: wacom: generic: Send BTNTOOLPEN in prox once the pen enters range (bsc#1051510).

HID: wacom: generic: Support multiple tools per report (bsc#1051510).

HID: wacom: generic: Use generic codepath terminology in wacomwacpenreport (bsc#1051510).
HID: wacom: Mark expected switch fall-through (bsc#1051510).
HID: wacom: Move handling of HID quirks into a dedicated function (bsc#1051510).
HID: wacom: Move HID fix for AES serial number into wacomhidusagequirk (bsc#1051510).

HID: wacom: Properly handle AES serial number and tool type (bsc#1051510).

HID: wacom: Queue events with missing type/serial data for later processing (bsc#1051510).

HID: wacom: Remove comparison of u8 mode with zero and simplify (bsc#1051510).

HID: wacom: Replace touchmax fixup code with static touchmax definitions (bsc#1051510).

HID: wacom: Send BTNTOUCH in response to INTUOSP2BT eraser contact (bsc#1051510).

HID: wacom: Support 'in range' for Intuos/Bamboo tablets where possible (bsc#1051510).

HID: Wacom: switch Dell canvas into highres mode (bsc#1051510).

HID: wacom: Sync INTUOSP2BT touch state after each frame if necessary (bsc#1051510).
HID: wacom: wacomwaccollection() is local to wacomwac.c (bsc#1051510).

HID: wacom: Work around HID descriptor bug in DTK-2451 and DTH-2452 (bsc#1051510).

hugetlbfs: dirty pages as they are added to pagecache (git fixes (mm/hugetlbfs)).

hugetlbfs: fix kernel BUG at fs/hugetlbfs/inode.c:444! (git fixes (mm/hugetlbfs)).

hwmon: (core) add thermal sensors only if dev->ofnode is present (bsc#1051510).
hwmon/coretemp: Cosmetic: Rename internal variables to zones from packages (jsc#SLE-5454).
hwmon/coretemp: Support multi-die/package (jsc#SLE-5454).
hwmon: (k10temp) 27C Offset needed for Threadripper2 (FATE#327735).
hwmon: (k10temp) Add Hygon Dhyana support (FATE#327735).
hwmon: (k10temp) Add support for AMD Ryzen w/ Vega graphics (FATE#327735).
hwmon: (k10temp) Add support for family 17h (FATE#327735).
hwmon: (k10temp) Add support for Stoney Ridge and Bristol Ridge CPUs (FATE#327735).
hwmon: (k10temp) Add support for temperature offsets (FATE#327735).
hwmon: (k10temp) Add temperature offset for Ryzen 1900X (FATE#327735).
hwmon: (k10temp) Add temperature offset for Ryzen 2700X (FATE#327735).
hwmon: (k10temp) Correct model name for Ryzen 1600X (FATE#327735).
hwmon: (k10temp) Display both Tctl and Tdie (FATE#327735).
hwmon: (k10temp) Fix reading critical temperature register (FATE#327735).
hwmon: (k10temp) Make function getrawtemp static (FATE#327735).
hwmon: (k10temp) Move chip specific code into probe function (FATE#327735).
hwmon: (k10temp) Only apply temperature offset if result is positive (FATE#327735).
hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors (FATE#327735).
hwmon: k10temp: Support Threadripper 2920X, 2970WX; simplify offset table (FATE#327735).
hwmon: (k10temp) Use API function to access System Management Network (FATE#327735).
hwmon/k10temp, x86/amdnb: Consolidate shared device IDs (FATE#327735).

hwmon: (pmbus/core) Treat parameters as paged if on multiple pages (bsc#1051510).

hwrng: omap - Set default quality (bsc#1051510).

i2c: acorn: fix i2c warning (bsc#1135642).

i2c: dev: fix potential memory leak in i2cdevioctlrdwr (bsc#1051510).

i2c: i801: Add support for Intel Comet Lake (jsc#SLE-5331).

i2c-piix4: Add Hygon Dhyana SMBus support (FATE#327735).

IB/mlx5: Fix leaking stack memory to userspace (bsc#1143045 CVE-2018-20855).

ibmveth: Update ethtool settings to reflect virtual properties (bsc#1136157, LTC#177197).

ibmvnic: Add device identification to requested IRQs (bsc#1137739).

ibmvnic: Do not close unopened driver during reset (bsc#1137752).

ibmvnic: Fix unchecked return codes of memory allocations (bsc#1137752).

ibmvnic: Refresh device multicast list after reset (bsc#1137752).

ibmvnic: remove set but not used variable 'netdev' (bsc#1137739).

iio: adsigmadelta: Properly handle SPI bus locking vs CS assertion (bsc#1051510).

iio: common: sspsensors: Initialize calculatedtime in sspcommonprocessdata (bsc#1051510).
iio: hmc5843: fix potential NULL pointer dereferences (bsc#1051510).
indirect call wrappers: helpers to speed-up indirect calls of builtin (bsc#1124503).
inet: switch IP ID generator to siphash (CVE-2019-10638 bsc#1140575).
Input: elantech - enable middle button support on 2 ThinkPads (bsc#1051510).
Input: gtco - bounds check collection indent level (CVE-2019-13631,bsc#1142023).
Input: imxkeypad - make sure keyboard can always wake up system (bsc#1051510).

Input: psmouse - fix build error of multiple definition (bsc#1051510).

Input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).

Input: synaptics - enable SMBus on ThinkPad E480 and E580 (bsc#1051510).

Input: tm2-touchkey - acknowledge that setting brightness is a blocking call (bsc#1129770).

Input: uinput - add compat ioctl number translation for UI*FFUPLOAD (bsc#1051510).
Install extra rpm scripts for kernel subpackaging (FATE#326579, jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).
intelth: msu: Fix single mode with disabled IOMMU (bsc#1051510).

iommu/amd: Make iommudisable safer (bsc#1140955).
iommu/arm-smmu: Add support for qcom,smmu-v2 variant (bsc#1051510).
iommu/arm-smmu: Avoid constant zero in TLBI writes (bsc#1140956).
iommu/arm-smmu-v3: Abort all transactions if SMMU is enabled in kdump kernel (bsc#1117158).
iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel (bsc#1117158 bsc#1134671).
iommu/arm-smmu-v3: sync the OVACKFLG to PRIQ consumer register (bsc#1051510).
iommu/arm-smmu-v3: Use explicit mb() when moving cons pointer (bsc#1051510).
iommu: Fix a leak in iommuinsertresvregion (bsc#1140957).

iommu: Use right function to get group for device (bsc#1140958).

iommu/vt-d: Duplicate iommuresvregion objects per device list (bsc#1140959).

iommu/vt-d: Handle PCI bridge RMRR device scopes in inteliommugetresvregions (bsc#1140960).

iommu/vt-d: Handle RMRR with PCI bridge device scopes (bsc#1140961).

iommu/vt-d: Introduce isdownstreamtopcibridge helper (bsc#1140962).

iommu/vt-d: Remove unnecessary rcureadlocks (bsc#1140964).

ipv4: Define ipv4neighlookupnoref when CONFIGINET is disabled (git-fixes).

ipv4: Fix raw socket lookup for local traffic (networking-stable-190514).

ipv4/igmp: fix another memory leak in igmpv3deldelrec() (networking-stable-190531).

ipv4/igmp: fix build error if !CONFIGIPMULTICAST (networking-stable-190531).

ipv4: Use return value of inetiif() for _rawv4lookup in the while loop (git-fixes).

ipv6: Consider skbounddevif when binding a raw socket to an address (networking-stable-190531).
ipv6: fix EFAULT on sendto with icmpv6 and hdrincl (networking-stable-190609).
ipv6: flowlabel: fl6socklookup() must use atomicincnotzero (networking-stable-190618).

ipv6: use READONCE() for inet->hdrincl as in ipv4 (networking-stable-190609).
irqchip/gic-v3-its: fix some definitions of inner cacheability attributes (bsc#1051510).
irqchip/mbigen: Don't clear eventid when freeing an MSI (bsc#1051510).
iwlwifi: mvm: check for length correctness in iwlmvmcreateskb() (bsc#1051510).

iwlwifi: pcie: don't crash on invalid RX interrupt (bsc#1051510).

kabi: drop LINUXMIBTCPWQUEUETOOBIG snmp counter (bsc#1137586).

Kabi fixup blkmqregisterdev() (bsc#1140637).
kabi: handle addition of net::hashmix (CVE-2019-10639 bsc#1140577).

kabi: handle addition of netnsipv4::ipidkey (CVE-2019-10638 bsc#1140575).
kabi: move sysctltcpminsndmss to preserve struct net layout (bsc#1137586).
kABI workaround for the new pcidev.skipbuspm field addition (bsc#1051510).

kabi: x86/topology: Add CPUID.1F multi-die/package support (jsc#SLE-5454).

kabi: x86/topology: Define topologylogicaldieid() (jsc#SLE-5454).
kbuild: use -flive-patching when CONFIGLIVEPATCH is enabled (bsc#1071995 fate#323487).

kernel-binary: fix missing </li>
kernel-binary: rpm does not support multiline condition

kernel-binary: Use -c grep option in klp project detection.

kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#178058 LTC#178059).

kernel/signal.c: tracesignaldeliver when signalgroupexit (git-fixes).

kernel-subpackage-spec: Add dummy package to ensure subpackages are rebuilt with kernel update (bsc#1106751).

KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).

KMPs: provide and conflict a kernel version specific KMP name (bsc#1127155, bsc#1109137).

KVM: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc#1133021).

KVM: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory (bsc#1133021).

kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).

kvm/mmu: kABI fix for *mmupages changes in struct kvmarch (bsc#1135335).
KVM: polling: add architecture backend to disable polling (bsc#1119222).
KVM: PPC: Book3S HV: Avoid lockdep debugging in TCE realmode handlers (bsc#1061840).
KVM: PPC: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts (bsc#1061840).
KVM: PPC: Book3S: Protect memslots while validating user address (bsc#1061840).
KVM: PPC: Release all hardware TCE tables attached to a group (bsc#1061840).
KVM: PPC: Remove redundand permission bits removal (bsc#1061840).
KVM: PPC: Validate all tces before updating tables (bsc#1061840).
KVM: PPC: Validate TCEs against preregistered memory page sizes (bsc#1061840).
KVM: s390: change default halt poll time to 50us (bsc#1119222).
KVM: s390: enable CONFIGHAVEKVMNOPOLL (bsc#1119222)
KVM: s390: fix typo in parameter description (bsc#1119222).
KVM: s390: kABI Workaround for 'kvmvcpustat'
KVM: s390: kABI Workaround for 'lowcore' (bsc#1119222).
KVM: s390: provide kvmarchnopoll function (bsc#1119222).

kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).

kvm: svm/avic: fix off-by-one in checking host APIC ID (bsc#1140971).

KVM: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).

KVM: x86: fix return value for reserved EFER (bsc#1140992).

kvm: x86: Include CPUID leaf 0x8000001e in kvm's supported CPUID (bsc#1114279).

kvm: x86: Include multiple indices with CPUID leaf 0x8000001d (bsc#1114279).

KVM: x86: Skip EFER vs. guest CPUID checks for host-initiated writes (bsc#1140972).

lapb: fixed leak of control-blocks (networking-stable-190618).

leds: avoid flushwork in atomic context (bsc#1051510).
libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk (bsc#1051510).
lib/bitmap.c: make bitmapparselist() thread-safe and much faster (bsc#1143507).

lib: fix stall in bitmapparselist() (bsc#1051510).
libnvdimm/bus: Prevent duplicate deviceunregister() calls (bsc#1139865).

libnvdimm/namespace: Fix label tracking error (bsc#1142350).

libnvdimm, pfn: Fix over-trim in trimpfndevice() (bsc#1140719).

lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGESIZE (bsc#1051510).
livepatch: Remove duplicate warning about missing reliable stacktrace support (bsc#1071995 fate#323487).
livepatch: Use static buffer for debugging messages under rq lock (bsc#1071995 fate#323487).
llc: fix skb leak in llcbuildandsenduipkt() (networking-stable-190531).

mac80211/cfg80211: update bss channel on channel switch (bsc#1051510).

mac80211: Do not use stack memory with scatterlist for GMAC (bsc#1051510).

mac80211: drop robust management frames from unknown TA (bsc#1051510).

mac80211: Fix kernel panic due to use of txq after free (bsc#1051510).

mac80211: handle deauthentication/disassociation from TDLS peer (bsc#1051510).

media: au0828: Fix NULL pointer dereference in au0828analogstreamenable() (bsc#1051510).
media: au0828: stop video streaming only when last user stops (bsc#1051510).
media: coda: clear error return value before picture run (bsc#1051510).
media: cpia2: Fix use-after-free in cpia2exit (bsc#1051510).

media: cpia2usb: first wake up, then free in disconnect (bsc#1135642).
media: go7007: avoid clang frame overflow warning with KASAN (bsc#1051510).
media: m88ds3103: serialize reset messages in m88ds3103setfrontend (bsc#1051510).
media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
media: ov2659: make SFMT succeed even if requested format doesn't match (bsc#1051510).

media: s5p-mfc: Make additional clocks optional (bsc#1051510).

media: saa7146: avoid high stack usage with clang (bsc#1051510).

media: smsusb: better handle optional alignment (bsc#1051510).

media: usb: siano: Fix false-positive 'uninitialized variable' warning (bsc#1051510).

media: usb: siano: Fix general protection fault in smsusb (bsc#1051510).

media: v4l2-ioctl: clear fields in sparm (bsc#1051510).
media: v4l2: Test type instead of cfg->type in v4l2ctrlnewcustom() (bsc#1051510).

media: vivid: fix incorrect assignment operation when setting video mode (bsc#1051510).

mei: bus: need to unlink client before freeing (bsc#1051510).

mei: me: add denverton innovation engine device IDs (bsc#1051510).

mei: me: add gemini lake devices id (bsc#1051510).

memory: tegra: Fix integer overflow on tick value calculation (bsc#1051510).

memstick: Fix error cleanup path of memstickinit (bsc#1051510).
Merge branch 'origin/users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'packaging' into SLE15
Merge branch 'scripts' into SLE15
Merge branch 'scripts' into SLE15
Merge branch 'SLE15EMBARGO' into SLE12-SP4EMBARGO
Merge branch 'SLE15EMBARGO' into SLE12-SP4EMBARGO
Merge branch 'SLE15EMBARGO' into SLE15

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE12-SP4

Merge branch 'SLE15' into SLE15EMBARGO
Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
Merge branch 'users/dkirjanov/SLE15/for-next' into SLE15
Merge branch 'users/fbaumanis/SLE15/for-next' into SLE15
Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
Merge branch 'users/fyang/SLE15/for-next' into SLE15
Merge branch 'users/ggherdovich/SLE15/for-next' into SLE15
Merge branch 'users/glin/SLE15/for-next' into SLE15
Merge branch 'users/hare/SLE15/for-next' into SLE15
Merge branch 'users/hare/SLE15/for-next' into SLE15
Merge branch 'users/hare/SLE15/for-next' into SLE15
Merge branch 'users/hare/SLE15/for-next' into SLE15
Merge branch 'users/jack/SLE15/for-next' into SLE15
Merge branch 'users/jack/SLE15/for-next' into SLE15
Merge branch 'users/jack/SLE15/for-next' into SLE15
Merge branch 'users/jack/SLE15/for-next' into SLE15
Merge branch 'users/jdelvare/SLE15/for-next' into SLE15
Merge branch 'users/jgross/SLE15/for-next' into SLE15
Merge branch 'users/jroedel/SLE15/for-next' into SLE15
Merge branch 'users/jroedel/SLE15/for-next' into SLE15
Merge branch 'users/jslaby/SLE15/for-next' into SLE15
Merge branch 'users/jslaby/SLE15/for-next' into SLE15
Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
Merge branch 'users/lduncan/SLE15/for-next' into SLE15
Merge branch 'users/lduncan/SLE15/for-next' into SLE15
Merge branch 'users/lduncan/SLE15/for-next' into SLE15
Merge branch 'users/lduncan/SLE15/for-next' into SLE15
Merge branch 'users/lhenriques/SLE15/for-next' into SLE15
Merge branch 'users/lyan/SLE15/for-next' into SLE15
Merge branch 'users/lyan/SLE15/for-next' into SLE15
Merge branch 'users/mbenes/SLE15/for-next' into SLE15
Merge branch 'users/mbenes/SLE15/for-next' into SLE15
Merge branch 'users/mbrugger/SLE15/for-next' into SLE15
Merge branch 'users/mgorman/SLE15/for-next' into SLE15
Merge branch 'users/mgorman/SLE15/for-next' into SLE15
Merge branch 'users/mhocko/SLE12-SP4/bnc1136896' into users/mhocko/SLE12-SP4/for-next
Merge branch 'users/mhocko/SLE15/bnc1139358' into SLE15
Merge branch 'users/mhocko/SLE15/bnc1139358' into users/mhocko/SLE12-SP4/bnc1139358
Merge branch 'users/mhocko/SLE15/for-next' into SLE15
Merge branch 'users/mkoutny/SLE15/for-next' into SLE15
Merge branch 'users/mkubecek/SLE15/1137586' into SLE15EMBARGO

Merge branch 'users/mkubecek/SLE15/1137586' into SLE15EMBARGO
Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/bsc1137534-s390-jumplabel-perf' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
Merge branch 'users/ohering/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/oneukum/SLE15/for-next' into SLE15
Merge branch 'users/osalvador/SLE15/for-next' into SLE15
Merge branch 'users/ptesarik/SLE15/for-next' into SLE15
Merge branch 'users/pvorel/SLE15/for-next' into SLE15
Merge branch 'users/tbogendoerfer/SLE15/for-next' into SLE15
Merge branch 'users/tzimmermann/SLE15/for-next' into SLE15
Merge branch 'users/vbabka/SLE15/for-next' into SLE15
Merge branch 'users/vbabka/SLE15/for-next' into SLE15
Merge branch 'users/vbabka/SLE15/for-next' into SLE15
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4EMBARGO

Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4EMBARGO
Merge remote-tracking branch 'origin/users/fyang/SLE12-SP4/for-next' into SLE12-SP4
Merge remote-tracking branch 'origin/users/ghe/SLE12-SP4/for-next' into SLE12-SP4
Merge remote-tracking branch 'origin/users/mfleming/SLE12-SP4/for-next' into SLE12-SP4
Merge remote-tracking branch 'origin/users/mhocko/SLE12-SP4/for-next' into SLE12-SP4
Merge remote-tracking branch 'origin/users/msuchanek/SLE12-SP4/for-next' into SLE12-SP4
mfd: da9063: Fix OTP control register names to match datasheets for DA9063/63L (bsc#1051510).
mfd: hi655x: Fix regmap area declared size for hi655x (bsc#1051510).
mfd: intel-lpss: Release IDA resources (bsc#1051510).
mfd: intel-lpss: Set the device in reset state when init (bsc#1051510).
mfd: max77620: Fix swapped FPSPERIODMAXUS values (bsc#1051510).

mfd: tps65912-spi: Add missing of table registration (bsc#1051510).

mfd: twl6040: Fix device init errors for ACCCTL register (bsc#1051510).

mISDN: make sure device name is NUL terminated (bsc#1051510).

mmc: core: make pwrseqemmc (partially) support sleepy GPIO controllers (bsc#1051510).
mmc: core: Prevent processing SDIO IRQs when the card is suspended (bsc#1051510).
mmc: core: Verify SD bus width (bsc#1051510).
mmc: mmci: Prevent polling for busy detection in IRQ context (bsc#1051510).
mmc: sdhci-iproc: cygnus: Set NOHISPD bit to fix HS50 data hold time problem (bsc#1051510).

mmc: sdhci-iproc: Set NOHISPD bit to fix HS50 data hold time problem (bsc#1051510).
mmc: sdhci-of-esdhc: add erratum A-009204 support (bsc#1051510).
mmc: sdhci-of-esdhc: add erratum eSDHC5 support (bsc#1051510).
mmc: sdhci-of-esdhc: add erratum eSDHC-A001 and A-008358 support (bsc#1051510).
mmc: sdhci-pci: Try 'cd' for card-detect lookup before using NULL (bsc#1051510).
mmcspi: add a status check for spisynclocked (bsc#1051510).

mm: migrate: Fix reference check race between findgetblock() and migration (bnc#1137609).

mm/nvdimm: add isioremapaddr and use that to check ioremap address (bsc#1140322 LTC#176270).

mm, pagealloc: fix hasunmovablepages for HugePages (bsc#1127034).
mm: pagechage-limit: Calculate pagecache-limit based on node state (bsc#1136811)
mm: replace all open encodings for NUMANONODE (bsc#1140322 LTC#176270).
mm: thp: relax GFPTHISNODE for MADVHUGEPAGE mappings (bnc#1012382).
mm/vmscan.c: prevent useless kswapd loops (git fixes (mm/vmscan)).
module: Fix livepatch/ftrace module text permissions race (bsc#1071995 fate#323487).
mount: copy the port field into the cloned nfsserver structure (bsc#1136990).

Move patch to correct directory.

Move stuff gitsort chokes on, out of the way
Move upstreamed ASoC patches into sorted section
mwifiex: Abort at too short BSS descriptor element (bsc#1136424 CVE-2019-3846).
mwifiex: Don't abort on small, spec-compliant vendor IEs (CVE-2019-3846,bsc#1136424).
mwifiex: fix 802.11n/WPA detection (CVE-2019-3846,bsc#1136424).
mwifiex: Fix heap overflow in mwifiexuapparsetailies() (bsc#1136935).
mwifiex: Fix possible buffer overflows at parsing bss descriptor
neighbor: Call ipv4neighlookupnoref in neighxmit (git-fixes).
neigh: fix use-after-free read in pneighgetnext (networking-stable-190618).
net/afiucv: remove GFPDMA restriction for HiperTransport (bsc#1142112 bsc#1142221 LTC#179334 LTC#179332).
net: avoid weird emergency message (networking-stable-190521).
net: fec: fix the clk mismatch in failedreset path (networking-stable-190531).

netfilter: conntrack: fix calculation of next bucket number in earlydrop (git-fixes).
net-gro: fix use-after-free read in napigrofrags() (networking-stable-190531).
net/ibmvnic: Remove tests of member address (bsc#1137739).
net/mlx4core: Change the error print to info print (networking-stable-190521).

net/mlx4en: ethtool, Remove unsupported SFP EEPROM high pages query (networking-stable-190609).
net/mlx5: Allocate root ns memory using kzalloc to match kfree (networking-stable-190531).
net/mlx5: Avoid double free in fs init error unwinding path (networking-stable-190531).
net: mvneta: Fix err code path of probe (networking-stable-190531).
net: mvpp2: fix bad MVPP2TXQSCHEDTOKENCNTRREG queue value (networking-stable-190531).

net: mvpp2: prs: Fix parser range for VID filtering (bsc#1098633).

net: mvpp2: prs: Use the correct helpers when removing all VID filters (bsc#1098633).

net: mvpp2: Use strscpy to handle stat strings (bsc#1098633).

netns: get more entropy from nethashmix() (CVE-2019-10638 bsc#1140575).

netns: provide pure entropy for nethashmix() (CVE-2019-10639 bsc#1140577).

net: openvswitch: do not free vport if registernetdevice() is failed (networking-stable-190618).
net/packet: fix memory leak in packetsetring() (git-fixes).
net: rds: fix memory leak in rdsibflushmrpool (networking-stable-190609).
net: seeq: fix crash caused by not set dev.parent (networking-stable-190514).
net: stmmac: fix reset gpio free missing (networking-stable-190531).
net: unbreak CONFIGRETPOLINE=n builds (bsc#1124503).

net: usb: qmiwwan: add Telit 0x1260 and 0x1261 compositions (networking-stable-190521).
net: use indirect call wrappers at GRO network layer (bsc#1124503).
net: use indirect call wrappers at GRO transport layer (bsc#1124503).
nfit/ars: Allow root to busy-poll the ARS state machine (bsc#1140814).
nfit/ars: Avoid stale ARS results (jsc#SLE-5433).
nfit/ars: Introduce scrubflags (jsc#SLE-5433).

NFS add module option to limit NFSv4 minor version (jsc#PM-231).

ntp: Allow TAI-UTC offset to be set to zero (bsc#1135642).

nvme: copy MTFA field from identify controller (bsc#1140715).

nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).

nvmem: allow to select i.MX nvmem driver for i.MX 7D (bsc#1051510).

nvmem: core: fix read buffer in place (bsc#1051510).

nvmem: correct Broadcom OTP controller driver writes (bsc#1051510).

nvmem: Don't let a NULL cellid for nvmemcellget() crash us (bsc#1051510).
nvmem: imx-ocotp: Add i.MX7D timing write clock setup support (bsc#1051510).
nvmem: imx-ocotp: Add support for banked OTP addressing (bsc#1051510).
nvmem: imx-ocotp: Enable i.MX7D OTP write support (bsc#1051510).
nvmem: imx-ocotp: Move i.MX6 write clock setup to dedicated function (bsc#1051510).
nvmem: imx-ocotp: Pass parameters via a struct (bsc#1051510).
nvmem: imx-ocotp: Restrict OTP write to IMX6 processors (bsc#1051510).
nvmem: imx-ocotp: Update module description (bsc#1051510).
nvmem: properly handle returned value nvmemregread (bsc#1051510).
nvme-rdma: fix double freeing of async event data (bsc#1120423).
nvme-rdma: fix possible double free of controller async event buffer (bsc#1120423).
nvme-rdma: fix possible free of a non-allocated async event buffer (bsc#1120423).
nvme: skip nvmeupdatediskinfo() if the controller is not live (bsc#1128432).

ocfs2: add first lock wait time in lockingstate (bsc#1134390).
ocfs2: add last unlock times in lockingstate (bsc#1134390).

ocfs2: add locking filter debugfs file (bsc#1134390).

ocfs2: try to reuse extent block in dealloc without metaalloc (bsc#1128902).
ocfs2: turn on OCFS2FSSTATS setting(bsc#1134393)
of: fix clang -Wunsequenced for be32tocpu() (bsc#1135642).
packet: Fix error path in packetinit (networking-stable-190514).

packet: in recvmsg msgname return at least sizeof sockaddrll (git-fixes).

parport: Fix mem leak in parportregisterdevmodel (bsc#1051510).
patches.fixes/mm-Fix-modifying-of-page-protection-by-insertpfn.patch: Fix buggy backport leading to MAPSYNC failures (bsc#1137372)
patches.fixes/scsi-vmwpscsi-Fix-use-after-free-in-pvscsiqueuelc.patch: Update patch metadata

patches.suse/Btrfs-kill-btrfsclearpathblocking.patch: (bsc#1140139).
PCI: Always allow probing with driveroverride (bsc#1051510).

PCI: Do not poll for PME if the device is in D3cold (bsc#1051510).

PCI: hv: Add hvpciremoveslots() when we unload the driver (bsc#1142701).
PCI: hv: Add pcidestroyslot() in pcidevicespresentwork(), if necessary (bsc#1142701).

PCI: hv: Fix a memory leak in hvejectdevicework() (bsc#1142701).
PCI: hv: Fix a use-after-free bug in hvejectdevicework() (bsc#1142701).

PCI: hv: Fix return value check in hvpciassignslots() (bsc#1142701).
PCI: hv: Remove unused reason for refcount handler (bsc#1142701).
PCI: hv: support reporting serial number as slot information (bsc#1142701).
PCI: PM: Avoid possible suspend-to-idle issue (bsc#1051510).
PCI: PM: Skip devices in D0 for suspend-to-idle (bsc#1051510).
PCI: Return error if cannot probe VF (bsc#1051510).
PCI: rpadlpar: Fix leaked devicenode references in add/remove paths (bsc#1051510).

perf tools: Add Hygon Dhyana support (fate#327735).

perf/x86/intel/cstate: Support multi-die/package (jsc#SLE-5454).

perf/x86/intel/rapl: Cosmetic rename internal variables in response to multi-die/pkg support (jsc#SLE-5454).

perf/x86/intel/rapl: Support multi-die/package (jsc#SLE-5454).

perf/x86/intel/uncore: Cosmetic renames in response to multi-die/pkg support (jsc#SLE-5454).

perf/x86/intel/uncore: Support multi-die/package (jsc#SLE-5454).

pkey: Indicate old mkvp only if old and current mkvp are different (bsc#1137827 LTC#178090).

pktgen: do not sleep with the thread lock held (git-fixes).

platform/chrome: crosecproto: check for NULL transfer function (bsc#1051510).

platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#1051510).

platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys from asusnbwmi (bsc#1051510).

platform/x86: intelturbomax3: Remove restriction for HWP platforms (jsc#SLE-5439).
platform/x86: mlx-platform: Fix parent device in i2c-mux-reg device registration (bsc#1051510).
platform/x86: pmcatom: Add CB4063 Beckhoff Automation board to critclksystems DMI table (bsc#1051510).
PM / core: Propagate dev->power.wakeuppath when no callbacks (bsc#1051510).

powercap/intelrapl: Simplify raplfindpackage() (jsc#SLE-5454).
powercap/intelrapl: Support multi-die/package (jsc#SLE-5454).

powercap/intelrapl: Update RAPL domain name and debug messages (jsc#SLE-5454).
powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753, FATE#323286, git-fixes).
powerpc: Always initialize input array when calling epaprhypercall() (bsc#1065729).

powerpc/cacheinfo: add cacheinfoteardown, cacheinforebuild (bsc#1138374, LTC#178199).

powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test (FATE#327696).

powerpc/eeh: Fix race with driver un/bind (bsc#1065729).

powerpc: Fix HMIs on big-endian with CONFIGRELOCATABLE=y (bsc#1065729).
powerpc/mm: Change function prototype (bsc#1055117).
powerpc/mm: Consolidate numaenable check and mincommondepth check (bsc#1140322 LTC#176270).

powerpc/mm/drconf: Use NUMANONODE on failures instead of node 0 (bsc#1140322 LTC#176270).

powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).

powerpc/mm/hugetlb: Update hugeptepsetaccessflags to call ptepsetaccessflags directly (bsc#1055117).
powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#1055117).
powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#1055117).
powerpc/msi: Fix NULL pointer access in teardown code (bsc#1065729).
powerpc/perf: Add PMLDMISSL1 and PMBR2PATH to power9 event list (bsc#1137728, LTC#178106).

powerpc/perf: Add POWER9 alternate PMRUNCYC and PMRUNINSTCMPL events (bsc#1137728, LTC#178106).
powerpc/perf: Fix MMCRA corruption by bhrbfilter (bsc#1053043).

powerpc/powernv/idle: Restore IAMR after idle (bsc#1065729).

powerpc/process: Fix sparse address space warnings (bsc#1065729).

powerpc/pseries/dlpar: Fix a missing check in dlparparseccproperty() (bsc#1137194, CVE-2019-12614).
powerpc/pseries: Fix oops in hotplug memory notifier (bsc#1138375, LTC#178204).
powerpc/pseries/mobility: prevent cpu hotplug during DT update (bsc#1138374, LTC#178199).
powerpc/pseries/mobility: rebuild cacheinfo hierarchy post-migration (bsc#1138374, LTC#178199).
powerpc/rtas: retry when cpu offline races with suspend/migration (bsc#1140428, LTC#178808).
powerpc/tm: Fix oops on sigreturn on systems without TM (bsc#1142265 CVE-2019-13648).
powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
power: supply: max14656: fix potential use-before-alloc (bsc#1051510).
power: supply: sysfs: prevent endless uevent loop with CONFIGPOWERSUPPLYDEBUG (bsc#1051510).

ppp: deflate: Fix possible crash in deflateinit (networking-stable-190521).
ppp: mppe: Add softdep to arc4 (bsc#1088047).
ptrace: Fix ->ptracercred handling for PTRACETRACEME (git-fixes).
ptrace: restore smprmb() in ptracemayaccess() (git-fixes).

pwm: stm32: Use 3 cells ->ofxlate() (bsc#1111666).
qlcnic: Avoid potential NULL pointer dereference (bsc#1051510).
qmiwwan: add network device usage statistics for qmimux devices (bsc#1051510).

qmiwwan: Add quirk for Quectel dynamic config (bsc#1051510).
qmiwwan: add support for QMAP padding in the RX path (bsc#1051510).

qmiwwan: avoid RCU stalls on device disconnect when in QMAP mode (bsc#1051510).
qmiwwan: extend permitted QMAP muxid value range (bsc#1051510).
qmiwwan: Fix out-of-bounds read (bsc#1111666).

rapidio: fix a NULL pointer dereference when createworkqueue() fails (bsc#1051510).
ras/CEC: Convert the timer callback to a workqueue (bsc#1114279).
ras/CEC: Fix binary search function (bsc#1114279).
rds: IB: fix 'passing zero to ERRPTR()' warning (git-fixes).

regulator: s2mps11: Fix buck7 and buck8 wrong voltages (bsc#1051510).

Replace the bluetooth fix with the upstream commit (bsc#1135556)

Revert 'alsa: hda/realtek - Improve the headset mic for Acer Aspire laptops' (bsc#1051510).

Revert 'bcache: set CACHESETIODISABLE in bchcacheddeverror()' (bsc#1140652).

Revert 'Drop multiversion(kernel) from the KMP template (fate#323189)' (bsc#1109137).

Revert 'e1000e: fix cyclic resets at link up with active tx' (bsc#1051510).

Revert 'HID: wacom: generic: Send BTNTOOLPEN in prox once the pen enters range' (bsc#1051510).

Revert 'KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).'

Revert 'KMPs: provide and conflict a kernel version specific KMP name'

Revert 'livepatch: Remove reliable stacktrace check in klptryswitchtask()' (bsc#1071995 fate#323487).
Revert 'Revert 'Drop multiversion(kernel) from the KMP template (fate#323189)''
Revert 'Revert 'KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).''
Revert 'Revert 'KMPs: provide and conflict a kernel version specific KMP name''
Revert 'Revert 'Revert 'Drop multiversion(kernel) from the KMP template (fate#323189)'''
Revert 's390/jumplabel: Use 'jdd' constraint on gcc9 (bsc#1138589).'

Revert 'serial: 8250: Don't service RX FIFO if interrupts are disabled' (bsc#1051510).

Revert 'Sign non-x86 kernels when possible (boo#1134303)'

Revert 'svm: Fix AVIC incomplete IPI emulation' (bsc#1140133).

rpm/kernel-binary.spec.in: Add back kernel-binary-base subpackage (jsc#SLE-3853).

rpm/kernel-binary.spec.in: Build livepatch support in SUSE release projects (bsc#1124167).

rpm/kernel-binary.spec.in: Update drm-kmp obsolete for SLE12-SP3/Leap-42.3

rpm/post.sh: correct typo in err msg (bsc#1137625)

rtc: 88pm860x: prevent use-after-free on device remove (bsc#1051510).

rtc: don't reference bogus function pointer in kdoc (bsc#1051510).

rtlwifi: fix a potential NULL pointer dereference (bsc#1051510).

rtnetlink: always put IFLALINK for links with a link-netnsid (networking-stable-190521).
s390/dasd: fix using offset into zero size array error (bsc#1051510).
s390/jumplabel: Use 'jdd' constraint on gcc9 (bsc#1138589).

s390/jumplabel: Use 'jdd' constraint on gcc9 (bsc#1138589).
s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
s390/qeth: fix race when initializing the IP address table (bsc#1051510).
s390/qeth: fix VLAN attribute in bridgehostnotify udev event (bsc#1051510).

s390/setup: fix early warning messages (bsc#1051510).

s390/virtio: handle find on invalid queue gracefully (bsc#1051510).

s390/vtime: steal time exponential moving average (bsc#1119222).

s390/zcrypt: Fix wrong dispatching for control domain CPRBs (bsc#1137811 LTC#178088).

sbitmap: fix improper use of smpmbbeforeatomic() (bsc#1140658).

sched/topology: Improve load balancing on AMD EPYC (bsc#1137366).

scripts/tar-up.sh: do not make assumptions about the remote name (bsc#1141488)

scsi: core: add new RDAC LENOVO/DESeries device (bsc#1132390).
scsi: ibmvfc: fix WARNON during event pool release (bsc#1137458 LTC#178093).

scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836 bsc#1134395).

scsi: megaraidsas: return error when create DMA pool failed (CVE-2019-11810 bsc#1134399).
scsi: mpt3sasctl: fix double-fetch bug in ctlioctlmain() (bsc#1136922 CVE-2019-12456).
scsi: qla2xxx: Declare local functions 'static' (bsc#1137444).
scsi: qla2xxx: Fix abort handling in tcmqla2xxxwritepending() (bsc#1140727).

scsi: qla2xxx: fix error message on <qla2400 (bsc#1118139).

scsi: qla2xxx: Fix FC-AL connection target discovery (bsc#1094555).

scsi: qla2xxx: Fix function argument descriptions (bsc#1118139).

scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines (bsc#1140728).

scsi: qla2xxx: Fix memory corruption during hba reset test (bsc#1118139).

scsi: qla2xxx: Fix N2N target discovery with Local loop (bsc#1094555).

scsi: qla2xxx: fix spelling mistake: 'existant' -> 'existent' (bsc#1118139).

scsi: qla2xxx: fully convert to the generic DMA API (bsc#1137444).

scsi: qla2xxx: fx00 copypaste typo (bsc#1118139).

scsi: qla2xxx: Improve several kernel-doc headers (bsc#1137444).

scsi: qla2xxx: Introduce a switch/case statement in qltxmittmrsp() (bsc#1137444).
scsi: qla2xxx: Make qla2x00sysfswritenvram() easier to analyze (bsc#1137444).

scsi: qla2xxx: Make sure that qlafx00ioctliosbentry() initializes 'res' (bsc#1137444).
scsi: qla2xxx: NULL check before some freeing functions is not needed (bsc#1137444).
scsi: qla2xxx: Remove a set-but-not-used variable (bsc#1137444).
scsi: qla2xxx: remove the unused tcmqla2xxxcmdwq (bsc#1118139).

scsi: qla2xxx: Remove two arguments from qlafx00errorentry() (bsc#1137444).

scsi: qla2xxx: Remove unused symbols (bsc#1118139).

scsi: qla2xxx: Split the qla2x00abortallcmds() function (bsc#1137444).
scsi: qla2xxx: use lower32bits and upper32bits instead of reinventing them (bsc#1137444).
scsi: qla2xxx: Use %p for printing pointers (bsc#1118139).
scsi: target/iblock: Fix overrun in WRITE SAME emulation (bsc#1140424).
scsi: vmwpscsi: Fix use-after-free in pvscsiqueuelck() (bsc#1135296).

scsi: zfcp: fix missing zfcpport reference put on -EBUSY from portremove (bsc#1051510).

scsi: zfcp: fix rport unblock if deleted SCSI devices on ScsiHost (bsc#1051510).
scsi: zfcp: fix scsieh host reset with portforced ERP for non-NPIV FCP devices (bsc#1051510).
scsi: zfcp: fix to prevent portremove with pure auto scan LUNs (only sdevs) (bsc#1051510).

sctp: Free cookie before we memdup a new one (networking-stable-190618).

sctp: silence warns on sctpstreaminit allocations (bsc#1083710).

serial: sh-sci: disable DMA for uartconsole (bsc#1051510).
serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
serial: uartps: Fix long line over 80 chars (bsc#1051510).
serial: uartps: Fix multiple line dereference (bsc#1051510).
serial: uartps: Remove useless return from cdnsuartpollputchar (bsc#1051510).
signal/ptrace: Don't leak unitialized kernel memory with PTRACEPEEKSIGINFO (git-fixes).
Sign non-x86 kernels when possible (boo#1134303)
SMB3: Fix endian warning (bsc#1137884).
soc: mediatek: pwrap: Zero initialize rdata in pwrapinitcipher (bsc#1051510).
soc: rockchip: Set the proper PWM for rk3288 (bsc#1051510).
spi: bitbang: Fix NULL pointer dereference in spiunregistermaster (bsc#1051510).
spi: Fix zero length xfer bug (bsc#1051510).
spi: pxa2xx: Add support for Intel Comet Lake (jsc#SLE-5331).
spi: pxa2xx: fix SCR (divisor) calculation (bsc#1051510).
spi: spi-fsl-spi: call spifinalizecurrentmessage() at the end (bsc#1051510).

spi : spi-topcliff-pch: Fix to handle empty DMA buffers (bsc#1051510).

spi: tegra114: reset controller on probe (bsc#1051510).

staging: comedi: amplcpci230: fix null pointer deref on interrupt (bsc#1051510).
staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#1051510).
staging: comedi: nimiocommon: Fix divide-by-zero for DIO cmdtest (bsc#1051510).
staging:iio:ad7150: fix threshold mode config bit (bsc#1051510).
staging: rtl8712: reduce stack usage, again (bsc#1051510).
Staging: vc04services: Fix a couple error codes (bsc#1051510).

staging: vc04services: prevent integer overflow in createpagelist() (bsc#1051510).

staging: wlan-ng: fix adapter initialization failure (bsc#1051510).

sunhv: Fix device naming inconsistency between sunhvconsole and sunhvreg (networking-stable-190618).

svm: Add warning message for AVIC IPI invalid target (bsc#1140133).

svm: Fix AVIC incomplete IPI emulation (bsc#1140133).

sysctl: handle overflow in procgetlong (bsc#1051510).

tcp: add tcpminsndmss sysctl (bsc#1137586).
tcp: be more careful in tcpfragment() (CVE-2019-11478 bsc#1137586 bsc#1139751).

tcp: enforce tcpminsndmss in tcpmtuprobing() (bsc#1137586).
tcp: fix fackcount accounting on tcpshiftskbdata() (CVE-2019-11477 bsc#1137586).
tcp: limit payload size of sacked skbs (bsc#1137586).
tcp: reduce tcpfastretransalert() verbosity (git-fixes).
tcp: refine memory limit test in tcpfragment() (CVE-2019-11478 bsc#1137586 bsc#1139751).

tcp: tcpfragment() should apply sane memory limits (bsc#1137586).
team: Always enable vlan tx offload (bsc#1051510).
testfirmware: Use correct snprintf() limit (bsc#1135642).

thermal: rcargen3thermal: disable interrupt in .remove (bsc#1051510).

thermal/x86pkgtempthermal: Cosmetic: Rename internal variables to zones from packages (jsc#SLE-5454).
thermal/x86pkgtempthermal: Support multi-die/package (jsc#SLE-5454).

thunderbolt: Fix to check for kmemdup failure (bsc#1051510).

tipc: fix hanging clients using poll with EPOLLOUT flag (git-fixes).

tmpfs: fix link accounting when a tmpfile is linked in (bsc#1051510).

tmpfs: fix uninitialized return value in shmemlink (bsc#1051510).
tools/cpupower: Add Hygon Dhyana support (fate#327735).
topology: Create corecpus and diecpus sysfs attributes (jsc#SLE-5454).
topology: Create packagecpus sysfs attribute (jsc#SLE-5454).

tracing/snapshot: Resize spare buffer if size changed (bsc#1140726).

treewide: Use DEVICEATTRWO (bsc#1137739).

Trim build dependencies of sample subpackage spec file (FATE#326579, jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).

tty: ipwireless: fix missing checks for ioremap (bsc#1051510).

tty: max310x: Fix external crystal register setup (bsc#1051510).

tty: rocket: fix incorrect forward declaration of 'rpinit()' (bsc#1051510).
tty: serialcore: Set port active bit in uartportactivate (bsc#1051510).

tty: serial: cpmuart - fix init when SMC is relocated (bsc#1051510).
tty: serial: msmserial: Fix XON/XOFF (bsc#1051510).

tty/vt: fix write/write race in ioctl(KDSKBSENT) handler (bsc#1051510).

tuntap: synchronize through tfiles array instead of tun->numqueues (networking-stable-190514).

udp: use indirect call wrappers for GRO socket lookup (bsc#1124503).

Update config files for NFSv4.2

Update patches.fixes/0001-mwifiex-Fix-heap-overflow-in-mwifiexuapparsetail.patch (bsc#1136935 CVE-2019-10126). Added CVE number

Update patches.fixes/nfsd-COPY-and-CLONE-operations-require-the-saved-fil.patch (git-fixes, bsc#1137103, CVE-2018-16871).

Update patches.suse/do-not-default-to-ibrs-on-skl.patch (bsc#1068032 CVE-2017-5753 bsc#1112824 jsc#SLE-7074).

Update patch referecens for two sercurity fixes (CVE-2019-12819, bsc#1138291, CVE-2019-12818, bsc#1138293).

Update References field to patches.suse/0275-bcache-never-writeback-a-discard-operation.patch (bsc#1130972, bsc#1102247).

Update 'SACK Panic' patches to reflect upstream state.

Update upstream patch tags

USB: Add LPM quirk for Surface Dock GigE adapter (bsc#1051510).

usb: chipidea: udc: workaround for endpoint conflict issue (bsc#1135642).

usb: core: Add PM runtime calls to usbhcdplatformshutdown (bsc#1051510).
USB: core: Don't unbind interfaces following device reset failure (bsc#1051510).
usb: dwc2: Fix DMA cache alignment issues (bsc#1051510).
usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) (bsc#1135642).
USB: Fix chipmunk-like voice when using Logitech C270 for recording audio (bsc#1051510).
USB: Fix slab-out-of-bounds write in usbgetbosdescriptor (bsc#1051510).

usb: gadget: ether: Fix race between getherdisconnect and rxsubmit (bsc#1051510).

usb: gadget: fusb300udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
usb: gadget: udc: lpc32xx: allocate descriptor with GFPATOMIC (bsc#1051510).

usbip: usbiphost: fix BUG: sleeping function called from invalid context (bsc#1051510).
usbip: usbiphost: fix stubdev lock context imbalance regression (bsc#1051510).
usbnet: fix kernel crash after disconnect (bsc#1051510).
usbnet: ipheth: fix racing condition (bsc#1051510).
usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
USB: rio500: fix memory leak in close after disconnect (bsc#1051510).
USB: rio500: refuse more than one device at a time (bsc#1051510).
USB: serial: fix initial-termios handling (bsc#1135642).
USB: serial: ftdisio: add ID for isodebug v1 (bsc#1051510).

USB: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#1051510).

USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode (bsc#1051510).

USB: serial: option: add Telit 0x1260 and 0x1261 compositions (bsc#1051510).

USB: serial: pl2303: add Allied Telesis VT-Kit3 (bsc#1051510).

USB: serial: pl2303: fix tranceiver suspend mode (bsc#1135642).

USB: sisusbvga: fix oops in error path of sisusbprobe (bsc#1051510).
USB: usb-storage: Add new ID to ums-realtek (bsc#1051510).
usb: xhci: avoid null pointer deref when bos field is NULL (bsc#1135642).
vfio: ccw: only free cp on final interrupt (bsc#1051510).
video: hgafb: fix potential NULL pointer dereference (bsc#1051510).
video: imsttfb: fix potential NULL pointer dereferences (bsc#1051510).
virtioconsole: initialize vtermno value for ports (bsc#1051510).

vlan: disable SIOCSHWTSTAMP in container (bsc#1051510).

VMCI: Fix integer overflow in VMCI handle arrays (bsc#1051510).

vrf: sit mtu should not be updated when vrf netdev is the link (networking-stable-190514).

vsock/virtio: free packets during the socket release (networking-stable-190521).

vsock/virtio: set SOCKDONE on peer shutdown (networking-stable-190618).
vxlan: trivial indenting fix (bsc#1051510).
vxlan: use be32 type for the param vni in _vxlanfdbdelete (bsc#1051510).

w1: fix the resume command API (bsc#1051510).

watchdog: imx2wdt: Fix settimeout for big timeout values (bsc#1051510).

wil6210: fix potential out-of-bounds read (bsc#1051510).

x86/alternative: Init idealnops for Hygon Dhyana (fate#327735).
x86/amdnb: Add support for Raven Ridge CPUs (FATE#327735).

x86/amdnb: Check vendor in AMD-only functions (fate#327735).
x86/apic: Add Hygon Dhyana support (fate#327735).
x86/bugs: Add Hygon Dhyana to the respective mitigation machinery (fate#327735).
x86/CPU/AMD: Don't force the CPB cap when running under a hypervisor (bsc#1114279).
x86/cpu: Create Hygon Dhyana architecture support file (fate#327735).
x86/cpufeatures: Carve out CQM features retrieval (jsc#SLE-5382).
x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (jsc#SLE-5382).
x86/cpufeatures: Enumerate the new AVX512 BFLOAT16 instructions (jsc#SLE-5382).
x86/cpu: Get cache info and setup cache cpumap for Hygon Dhyana (fate#327735).
x86/CPU/hygon: Fix physprocid calculation logic for multi-die processors (fate#327735).
x86/cpu/mtrr: Support TOPMEM2 and get MTRR number (fate#327735).

x86/events: Add Hygon Dhyana support to PMU infrastructure (fate#327735).

x86/kvm: Add Hygon Dhyana support to KVM (fate#327735).

x86/mce: Add Hygon Dhyana support to the MCA infrastructure (fate#327735).

x86/mce: Don't disable MCA banks when offlining a CPU on AMD (fate#327735).

x86/mce: Fix machinecheckpoll() tests for error types (bsc#1114279).

x86/microcode, cpuhotplug: Add a microcode loader CPU hotplug callback (bsc#1114279).

x86/microcode: Fix microcode hotplug state (bsc#1114279).

x86/microcode: Fix the ancient deprecated microcode loading method (bsc#1114279).

x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#1140903).

x86/mm/memencrypt: Disable all instrumentation for early SME setup (bsc#1114279).
x86/pci, x86/amdnb: Add Hygon Dhyana support to PCI and northbridge (fate#327735).

x86/smpboot: Do not use BSP INIT delay and MWAIT to idle on Dhyana (fate#327735).

x86/smpboot: Rename matchdie() to matchpkg() (jsc#SLE-5454).

x86/speculation/mds: Revert CPU buffer clear on double fault exit (bsc#1114279).

x86/speculation/swapgs: Exclude ATOMs from speculation through SWAPGS (bsc#1139358, CVE-2019-1125).

x86/topology: Add CPUID.1F multi-die/package support (jsc#SLE-5454).

x86/topology: Create topologymaxdieperpackage() (jsc#SLE-5454).

x86/topology: Define topologydieid() (jsc#SLE-5454).

x86/topology: Define topologylogicaldieid() (jsc#SLE-5454).
x86/xen: Add Hygon Dhyana support to Xen (fate#327735).
xen: let allocxenballoonedpages() fail if not enough memory free (bsc#1142450 XSA-300).
xen/pciback: Don't disable PCICOMMAND on PCI device reset (bsc#1065600).

xfs: do not set the page uptodate in xfswritepagemap (bsc#1138003).

xfs: don't clear imapvalid for a non-uptodate buffers (bsc#1138018).
xfs: don't look at buffer heads in xfsaddtoioend (bsc#1138013).

xfs: don't overflow xattr listent buffer (bsc#1143105).

xfs: don't use XFSBMAPIENTRIRE in xfsgetblocks (bsc#1137999).

xfs: don't use XFSBMAPIIGSTATE in xfsmapblocks (bsc#1138005).

xfs: eof trim writeback mapping as soon as it is cached (bsc#1138019).

xfs: fix smaxbytes overflow problems (bsc#1137996).
xfs: make xfswritepagemap extent map centric (bsc#1138009).
xfs: minor cleanup for xfsgetblocks (bsc#1138000).
xfs: move all writeback bufferhead manipulation into xfsmapatoffset (bsc#1138014).
xfs: refactor the tail of xfswritepagemap (bsc#1138016).
xfs: remove the imapvalid flag (bsc#1138012).

xfs: remove unused parameter from xfswritepagemap (bsc#1137995).

xfs: remove XFSIOINVALID (bsc#1138017).

xfs: remove xfsmapcow (bsc#1138007).

xfs: remove xfsreflinkfindcowmapping (bsc#1138010).

xfs: remove xfsreflinktrimirectonextcow (bsc#1138006).

xfs: remove xfsstartpagewriteback (bsc#1138015).
xfs: rename the offset variable in xfswritepagemap (bsc#1138008).
xfs: simplify xfsmapblocks by using xfsiextlookupextent directly (bsc#1138011).

xfs: skip CoW writes past EOF when writeback races with truncate (bsc#1137998).

xfs: xfsreflinkconvertcow() memory allocation deadlock (bsc#1138002).
xhci: Convert xhcihandshake() to use readlpolltimeoutatomic() (bsc#1051510).
xhci: update bounce buffer with correct sg num (bsc#1051510).
xhci: Use %zu for printing size_t type (bsc#1051510).

References

Affected packages

SUSE:Linux Enterprise Real Time 12 SP4 / kernel-rt

Package

Name: kernel-rt
Purl: purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.12.14-8.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-8.3.1",
            "dlm-kmp-rt": "4.12.14-8.3.1",
            "gfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-rt-devel": "4.12.14-8.3.1",
            "kernel-rt_debug-devel": "4.12.14-8.3.1",
            "cluster-md-kmp-rt": "4.12.14-8.3.1",
            "kernel-source-rt": "4.12.14-8.3.1",
            "kernel-rt": "4.12.14-8.3.1",
            "ocfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-syms-rt": "4.12.14-8.3.1",
            "kernel-rt-base": "4.12.14-8.3.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP4 / kernel-rt_debug

Package

Name: kernel-rt_debug
Purl: purl:rpm/suse/kernel-rt_debug&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.12.14-8.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-8.3.1",
            "dlm-kmp-rt": "4.12.14-8.3.1",
            "gfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-rt-devel": "4.12.14-8.3.1",
            "kernel-rt_debug-devel": "4.12.14-8.3.1",
            "cluster-md-kmp-rt": "4.12.14-8.3.1",
            "kernel-source-rt": "4.12.14-8.3.1",
            "kernel-rt": "4.12.14-8.3.1",
            "ocfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-syms-rt": "4.12.14-8.3.1",
            "kernel-rt-base": "4.12.14-8.3.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP4 / kernel-source-rt

Package

Name: kernel-source-rt
Purl: purl:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.12.14-8.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-8.3.1",
            "dlm-kmp-rt": "4.12.14-8.3.1",
            "gfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-rt-devel": "4.12.14-8.3.1",
            "kernel-rt_debug-devel": "4.12.14-8.3.1",
            "cluster-md-kmp-rt": "4.12.14-8.3.1",
            "kernel-source-rt": "4.12.14-8.3.1",
            "kernel-rt": "4.12.14-8.3.1",
            "ocfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-syms-rt": "4.12.14-8.3.1",
            "kernel-rt-base": "4.12.14-8.3.1"
        }
    ]
}

SUSE:Linux Enterprise Real Time 12 SP4 / kernel-syms-rt

Package

Name: kernel-syms-rt
Purl: purl:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2012%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.12.14-8.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "4.12.14-8.3.1",
            "dlm-kmp-rt": "4.12.14-8.3.1",
            "gfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-rt-devel": "4.12.14-8.3.1",
            "kernel-rt_debug-devel": "4.12.14-8.3.1",
            "cluster-md-kmp-rt": "4.12.14-8.3.1",
            "kernel-source-rt": "4.12.14-8.3.1",
            "kernel-rt": "4.12.14-8.3.1",
            "ocfs2-kmp-rt": "4.12.14-8.3.1",
            "kernel-syms-rt": "4.12.14-8.3.1",
            "kernel-rt-base": "4.12.14-8.3.1"
        }
    ]
}