The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
CVE-2020-15780: A lockdown bypass for loading unsigned modules using ACPI table injection was fixed. (bsc#1173573)
CVE-2020-15393: Fixed a memory leak in usbtest_disconnect (bnc#1173514).
CVE-2020-12771: An issue was discovered in btreegccoalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails (bnc#1171732).
CVE-2020-12888: The VFIO PCI driver mishandled attempts to access disabled memory space (bnc#1171868).
CVE-2020-10773: Fixed a memory leak on s390/s390x, in the cmmtimeouthander in file arch/s390/mm/cmm.c (bnc#1172999).
CVE-2020-14416: Fixed a race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free. This affects drivers/net/slip/slip.c and drivers/net/can/slcan.c (bnc#1162002).
CVE-2020-10768: Fixed an issue with the prctl() function, where indirect branch speculation could be enabled even though it was diabled before (bnc#1172783).
CVE-2020-10766: Fixed an issue which allowed an attacker with a local account to disable SSBD protection (bnc#1172781).
CVE-2020-10767: Fixed an issue where Indirect Branch Prediction Barrier was disabled in certain circumstances, leaving the system open to a spectre v2 style attack (bnc#1172782).
CVE-2020-13974: Fixed a integer overflow in drivers/tty/vt/keyboard.c, if k_ascii is called several times in a row (bnc#1172775).
CVE-2019-20810: Fixed a memory leak in go7007sndinit in drivers/media/usb/go7007/snd-go7007.c because it did not call sndcardfree for a failure path (bnc#1172458).
CVE-2019-20812: An issue was discovered in the prbcalcretireblktmo() function in net/packet/afpacket.c could result in a denial of service (CPU consumption and soft lockup) in a certain failure case involving TPACKETV3 (bnc#1172453).
CVE-2019-19462: relayopen in kernel/relay.c in the Linux kernel allowed local users to cause a denial of service (such as relay blockage) by triggering a NULL allocpercpu result (bnc#1158265).
CVE-2020-10732: A flaw was found in the implementation of Userspace core dumps. This flaw allowed an attacker with a local account to crash a trivial program and exfiltrate private kernel data (bnc#1171220).
CVE-2020-12656: Fixed a memory leak in gssmechfree in the rpcsecgsskrb5 implementation, caused by a lack of certain domain_release calls (bnc#1171219).
CVE-2020-10751: A flaw was found in the SELinux LSM hook implementation, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages within the skb with the granted permission without further processing (bnc#1171189).
CVE-2020-10711: A NULL pointer dereference flaw was found in the SELinux subsystem in versions This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmapnetlblimport' routine. This flaw allowed a remote network user to crash the system kernel, resulting in a denial of service (bnc#1171191).
CVE-2020-12769: An issue was discovered in drivers/spi/spi-dw.c allowed attackers to cause a panic via concurrent calls to dwspiirq and dwspitransfer_one (bnc#1171983).
CVE-2020-13143: gadgetdevdescUDCstore in drivers/usb/gadget/configfs.c relies on kstrdup without considering the possibility of an internal '\0' value, which allowed attackers to trigger an out-of-bounds read (bnc#1171982).
The following non-security bugs were fixed:
ACPICA: Fixes for acpiExec namespace init file (git-fixes).
ACPI: configfs: Disallow loading ACPI tables when locked down (git-fixes).
ACPI: CPPC: Fix reference count leak in acpicppcprocessor_probe() (git-fixes).
ACPI: GED: add support for _Exx / _Lxx handler methods (git-fixes).
ACPI: GED: use correct trigger type field in _Exx / _Lxx handling (git-fixes).
ACPI: PM: Avoid using power resources if there are none for D0 (git-fixes).
ACPI: sysfs: Fix pmprofileattr type (git-fixes).
ACPI: sysfs: Fix reference count leak in acpisysfsaddhotplugprofile() (git-fixes).
Add a GIT commit ID of already cherry-picked x86/platform patch
Add cherry-picked ID to the already applied pinctrl patch
afunix: add compatioctl support (git-fixes).
agp/intel: Reinforce the barrier after GTT updates (git-fixes).
aio: fix async fsync creds (bsc#1173828).
ALSA: emu10k1: delete an unnecessary condition (git-fixes).
ALSA: es1688: Add the missed sndcardfree() (git-fixes).
ALSA: fireface: fix configuration error for nominal sampling transfer frequency (git-fixes).
ALSA: firewire-lib: fix invalid assignment to union data for directional parameter (git-fixes).
ALSA: hda: Add ElkhartLake HDMI codec vid (git-fixes).
ALSA: hda: add member to store ratio for stripe control (git-fixes).
ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table (git-fixes).
ALSA: hda: add siennacichlid audio asic id for siennacichlid up (git-fixes).
ALSA: hda: Fix potential race in unsol event handler (git-fixes).
ALSA: hda/hdmi: fix failures at PCM open on Intel ICL and later (git-fixes).
ALSA: hda/hdmi: improve debug traces for stream lookups (git-fixes).
ALSA: hda - let hsmic be picked ahead of hpmic (git-fixes).
ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround (bsc#1172017).
ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines (git-fixes).
ALSA: hda/realtek - Add LED class support for micmute LED (git-fixes).
ALSA: hda/realtek - Add more fixup entries for Clevo machines (git-fixes).
ALSA: hda/realtek: Add mute LED and micmute LED support for HP systems (git-fixes).
ALSA: hda/realtek - Add new codec supported for ALC287 (git-fixes).
ALSA: hda/realtek - Add quirk for MSI GE63 laptop (git-fixes).
ALSA: hda/realtek - Enable audio jacks of Acer vCopperbox with ALC269VC (git-fixes).
ALSA: hda/realtek: Enable headset mic of Acer C20-820 with ALC269VC (git-fixes).
ALSA: hda/realtek: Enable headset mic of Acer Veriton N4660G with ALC269VC (git-fixes).
ALSA: hda/realtek - Enable micmute LED on and HP system (git-fixes).
schchoke: avoid potential panic in chokereset() (networking-stable-200512).
sched/cfs: change initial value of runnable_avg (bsc#1158765).
sched/core: Check cpusmask, not cpusptr in _setcpusallowedptr(), to fix mask corruption (bnc#1155798 (CPU scheduler functional and performance backports)).
sched/core: Fix PI boosting between RT and DEADLINE tasks (bsc#1172823).