SUSE-SU-2020:2119-1

Source
https://www.suse.com/support/update/announcement/2020/suse-su-20202119-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:2119-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2020:2119-1
Related
Published
2020-08-04T13:16:44Z
Modified
2020-08-04T13:16:44Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2020-15780: A lockdown bypass for loading unsigned modules using ACPI table injection was fixed. (bsc#1173573)
  • CVE-2020-15393: Fixed a memory leak in usbtest_disconnect (bnc#1173514).
  • CVE-2020-12771: An issue was discovered in btreegccoalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails (bnc#1171732).
  • CVE-2020-12888: The VFIO PCI driver mishandled attempts to access disabled memory space (bnc#1171868).
  • CVE-2020-10773: Fixed a memory leak on s390/s390x, in the cmmtimeouthander in file arch/s390/mm/cmm.c (bnc#1172999).
  • CVE-2020-14416: Fixed a race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free. This affects drivers/net/slip/slip.c and drivers/net/can/slcan.c (bnc#1162002).
  • CVE-2020-0305: Fixed a possible use-after-free due to a race condition incdevget of chardev.c. This could lead to local escalation of privilege. User interaction is not needed for exploitation (bnc#1174462).
  • CVE-2020-10769: A buffer over-read flaw was found in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. This flaw allowed a local attacker with user privileges to cause a denial of service (bnc#1173265).
  • CVE-2020-10781: Fixed a denial of service issue in the ZRAM implementation (bnc#1173074).
  • CVE-2019-20908: Fixed incorrect access permissions for the efivar_ssdt ACPI variable, which could be used by attackers to bypass lockdown or secure boot restrictions (bnc#1173567).
  • CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c, related to invalid length checks for variable elements in a beacon head (bnc#1152107).
  • CVE-2020-10135: Legacy pairing and secure-connections pairing authentication in Bluetooth may have allowed an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key (bnc#1171988).
  • CVE-2020-14331: Fixed a buffer over write in vgaconscrollbackupdate() (bnc#1174205).

The following non-security bugs were fixed:

  • ACPI: GED: add support for _Exx / _Lxx handler methods (bsc#1111666).
  • ACPI: GED: use correct trigger type field in _Exx / _Lxx handling (bsc#1111666).
  • ACPI: NFIT: Fix unlock on error in scrub_show() (bsc#1171753).
  • ACPI: sysfs: Fix pmprofileattr type (bsc#1111666).
  • ACPI: video: Use native backlight on Acer Aspire 5783z (bsc#1111666).
  • ACPI: video: Use native backlight on Acer TravelMate 5735Z (bsc#1111666).
  • ALSA: hda - let hsmic be picked ahead of hpmic (bsc#1111666).
  • ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 (bsc#1111666).
  • ALSA: lx6464es - add support for LX6464ESe pci express variant (bsc#1111666).
  • ALSA: opl3: fix infoleak in opl3 (bsc#1111666).
  • ALSA: usb-audio: add quirk for MacroSilicon MS2109 (bsc#1111666).
  • ALSA: usb-audio: Fix packet size calculation (bsc#1111666).
  • ALSA: usb-audio: Improve frames size computation (bsc#1111666).
  • amdgpu: a NULL ->mm does not mean a thread is a kthread (git-fixes).
  • ath9k: Fix general protection fault in ath9khifusbrxcb (bsc#1111666).
  • ath9k: Fix use-after-free Read in ath9kwmictrl_rx (bsc#1111666).
  • ath9k: Fix use-after-free Write in ath9khtcrx_msg (bsc#1111666).
  • ath9x: Fix stack-out-of-bounds Write in ath9khifusbrxcb (bsc#1111666).
  • ax25: fix setsockopt(SOBINDTODEVICE) (networking-stable-2005_27).
  • b43: Fix connection problem with WPA3 (bsc#1111666).
  • b43_legacy: Fix connection problem with WPA3 (bsc#1111666).
  • be2net: fix link failure after ethtool offline test (git-fixes).
  • block, bfq: add requeue-request hook (bsc#1104967 bsc#1171673).
  • block, bfq: postpone rq preparation to insert or merge (bsc#1104967 bsc#1171673).
  • block: nrsectswrite(): Disable preemption on seqcount write (bsc#1173818).
  • Bluetooth: Add SCO fallback for invalid LMP parameters error (bsc#1111666).
  • bnxt_en: Fix AER reset logic on 57500 chips (git-fixes).
  • bnxt_en: Fix ethtool selftest crash under error conditions (git-fixes).
  • bnxten: Fix handling FRAGERR when NVMINSTALLUPDATE cmd fails (git-fixes).
  • bnxt_en: Fix ipv6 RFS filter matching logic (git-fixes).
  • bnxt_en: fix NULL dereference in case SR-IOV configuration fails (git-fixes).
  • bnxten: Fix VF anti-spoof filter setup (networking-stable-2005_12).
  • bnxten: Fix VLAN acceleration handling in bnxtfixfeatures() (networking-stable-2005_12).
  • bnxten: Improve AER slot reset (networking-stable-2005_12).
  • brcmfmac: Transform compatible string for FW loading (bsc#1169771).
  • btrfs: add assertions for tree == inode->io_tree to extent IO helpers (bsc#1174438).
  • btrfs: add new helper btrfslockandflushordered_range (bsc#1174438).
  • btrfs: Always use a cached extentstate in btrfslockandflushorderedrange (bsc#1174438).
  • btrfs: always wait on ordered extents at fsync time (bsc#1171761).
  • btrfs: clean up the left over logged_list usage (bsc#1171761).
  • btrfs: drop argument tree from btrfslockandflushordered_range (bsc#1174438).
  • btrfs: fix extentstate leak in btrfslockandflushorderedrange (bsc#1174438).
  • btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof (bsc#1174438).
  • btrfs: fix hang on snapshot creation after RWF_NOWAIT write (bsc#1174438).
  • Btrfs: fix list_add corruption and soft lockups in fsync (bsc#1171761).
  • Btrfs: fix missing data checksums after a ranged fsync (msync) (bsc#1171761).
  • btrfs: fix missing file extent item for hole after ranged fsync (bsc#1171761).
  • Btrfs: fix missing hole after hole punching and fsync when using NO_HOLES (bsc#1171761).
  • btrfs: fix missing semaphore unlock in btrfssyncfile (bsc#1171761).
  • Btrfs: fix rare chances for data loss when doing a fast fsync (bsc#1171761).
  • btrfs: fix RWF_NOWAIT write not failling when we need to cow (bsc#1174438).
  • btrfs: fix RWF_NOWAIT writes blocking on extent locks and waiting for IO (bsc#1174438).
  • btrfs: qgroup: Fix a bug that prevents qgroup to be re-enabled after disable (bsc#1172247).
  • btrfs: Remove extra parentheses from condition in copy_items() (bsc#1171761).
  • Btrfs: remove no longer used ioerr from btrfslog_ctx (bsc#1171761).
  • Btrfs: remove no longer used logged range variables when logging extents (bsc#1171761).
  • Btrfs: remove no longer used 'sync' member from transaction handle (bsc#1171761).
  • btrfs: remove remaing fullsync logic from btrfssync_file (bsc#1171761).
  • btrfs: remove the logged extents infrastructure (bsc#1171761).
  • btrfs: remove the wait ordered logic in the logoneextent path (bsc#1171761).
  • btrfs: Return EAGAIN if we can't start no snpashot write in checkcannocow (bsc#1174438).
  • btrfs: use correct count in btrfsfilewrite_iter() (bsc#1174438).
  • btrfs: Use newly introduced btrfslockandflushordered_range (bsc#1174438).
  • btrfs: volumes: Remove ENOSPC-prone btrfscanrelocate() (bsc#1171124).
  • bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads (bsc#1111666).
  • carl9170: remove P2P_GO support (bsc#1111666).
  • ceph: convert mdsc->cap_dirty to a per-session list (bsc#1167104).
  • ceph: request expedited service on session's last cap flush (bsc#1167104).
  • cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages (bsc#1173857).
  • clocksource: dwapbtimer: Make CPU-affiliation being optional (bsc#1111666).
  • config: arm64: enable CONFIGIOMMUDEFAULT_PASSTHROUGH References: bsc#1174549
  • crypto: algboss - do not wait during notifier callback (bsc#1111666).
  • crypto: algif_skcipher - Cap recv SG list at ctx->used (bsc#1111666).
  • crypto: cavium/nitrox - Fix 'nitroxgetfirst_device()' when ndevlist is fully iterated (bsc#1111666).
  • crypto: cavium/nitrox - Fix 'nitroxgetfirst_device()' when ndevlist is fully iterated (git-fixes).
  • Crypto/chcr: fix for ccm(aes) failed test (bsc#1111666).
  • crypto: talitos - fix IPsec cipher in length (git-fixes).
  • crypto: talitos - reorder code in talitosedescalloc() (git-fixes).
  • debugfs: Check module state before warning in {full/open}proxyopen() (bsc#1173746).
  • devinet: fix memleak in inetdevinit() (networking-stable-2006_07).
  • /dev/mem: Add missing memory barriers for devmem_inode (git-fixes).
  • /dev/mem: Revoke mappings when a driver claims the region (git-fixes).
  • dpaaeth: fix usage as DSA master, try 3 (networking-stable-2005_27).
  • driver-core, libnvdimm: Let device subsystems add local lockdep coverage (bsc#1171753).
  • Drivers: hv: Change flag to write log level in panic msg to false (bsc#1170617, bsc#1170618).
  • drm: bridge: adv7511: Extend list of audio sample rates (bsc#1111666).
  • drm/dp_mst: Increase ACT retry timeout to 3s (bsc#1113956) * context changes
  • drm: encoder_slave: fix refcouting error for modules (bsc#1111666).
  • drm: encoder_slave: fix refcouting error for modules (bsc#1114279)
  • drm/i915/icl+: Fix hotplug interrupt disabling after storm detection (bsc#1112178)
  • drm/mediatek: Check plane visibility in atomic_update (bsc#1113956) * context changes
  • drm/msm/dpu: fix error return code in dpuencoderinit (bsc#1111666).
  • drm: panel-orientation-quirks: Add quirk for Asus T101HA panel (bsc#1111666).
  • drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003 (bsc#1111666).
  • drm/qxl: Use correct notify port address when creating cursor ring (bsc#1113956)
  • drm/radeon: fix double free (bsc#1113956)
  • drm/radeon: fix fbdiv check in niinitsmcspll_table() (bsc#1113956)
  • drm/sun4i: hdmi ddc clk: Fix size of m divider (bsc#1111666).
  • drm/tegra: hub: Do not enable orphaned window group (bsc#1111666).
  • drm/vkms: Hold gem object while still in-use (bsc#1113956) * context changes
  • e1000: Distribute switch variables for initialization (bsc#1111666).
  • e1000e: Disable TSO for buffer overrun workaround (bsc#1051510).
  • e1000e: Do not wake up the system via WOL if device wakeup is disabled (bsc#1051510).
  • e1000e: Relax condition to trigger reset for ME workaround (bsc#1111666).
  • EDAC/amd64: Read back the scrub rate PCI register on F15h (bsc#1114279).
  • ext4: fix a data race at inode->i_blocks (bsc#1171835).
  • ext4: fix partial cluster initialization when splitting extent (bsc#1173839).
  • ext4: fix race between ext4syncparent() and rename() (bsc#1173838).
  • ext4, jbd2: ensure panic by fix a race between jbd2 abort and ext4 error handlers (bsc#1173833).
  • fanotify: fix ignore mask logic for events on child and on dir (bsc#1172719).
  • Fix boot crash with MD (bsc#1174343)
  • fix multiplication overflow in copy_fdtable() (bsc#1173825).
  • fqcodel: fix TCAFQCODELDROPBATCHSIZE sanity checks (networking-stable-200512).
  • gpu: host1x: Detach driver on unregister (bsc#1111666).
  • HID: magicmouse: do not set up autorepeat (git-fixes).
  • hvnetvsc: Fix netvscstart_xmit's return type (git-fixes).
  • hwmon: (acpipowermeter) Fix potential memory leak in acpipowermeter_add() (bsc#1111666).
  • hwmon: (emc2103) fix unable to change fan pwm1_enable attribute (bsc#1111666).
  • hwmon: (max6697) Make sure the OVERT mask is set correctly (bsc#1111666).
  • i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 (bsc#1111666).
  • i2c: eg20t: Load module automatically if ID matches (bsc#1111666).
  • i2c: mlxcpld: check correct size of maximum RECV_LEN packet (bsc#1111666).
  • i40e: reduce stack usage in i40esetfc (git-fixes).
  • IB/hfi1: Do not destroy hfi1_wq when the device is shut down (bsc#1174409).
  • IB/hfi1: Do not destroy link_wq when the device is shut down (bsc#1174409).
  • ibmveth: Fix max MTU limit (bsc#1173428 ltc#186397).
  • ibmvnic: continue to init in CRQ reset returns H_CLOSED (bsc#1173280 ltc#185369).
  • ibmvnic: Flush existing work items before device removal (bsc#1065729).
  • ibmvnic: Harden device login requests (bsc#1170011 ltc#183538).
  • iio:health:afe4404 Fix timestamp alignment and prevent data leak (bsc#1111666).
  • iio:humidity:hdc100x Fix alignment and data leak issues (bsc#1111666).
  • iio:magnetometer:ak8974: Fix alignment and data leak issues (bsc#1111666).
  • iio: mma8452: Add missed iiodeviceunregister() call in mma8452_probe() (bsc#1111666).
  • iio:pressure:ms5611 Fix buffer element alignment (bsc#1111666).
  • iio: pressure: zpa2326: handle pmruntimeget_sync failure (bsc#1111666).
  • Input: i8042 - add Lenovo XiaoXin Air 12 to i8042 nomux list (bsc#1111666).
  • input: i8042 - Remove special PowerPC handling (git-fixes).
  • Input: synaptics - add a second working PNP_ID for Lenovo T470s (bsc#1111666).
  • intel_idle: Graceful probe failure when MWAIT is disabled (bsc#1174115).
  • intel_th: Fix a NULL dereference when hub driver is not loaded (bsc#1111666).
  • iommu/vt-d: Enable PCI ACS for platform opt in hint (bsc#1174130).
  • ipvlan: call devchangeflags when ipvlan mode is reset (git-fixes).
  • ixgbevf: Remove limit of 10 entries for unicast filter list (git-fixes).
  • jbd2: avoid leaking transaction credits when unreserving handle (bsc#1173845).
  • jbd2: Preserve kABI when adding jabortmutex (bsc#1173833).
  • kabi: hv: prevent struct device_node to become defined (bsc#1172871).
  • kABI: protect struct mlx5cmdwork_ent (kabi).
  • kABI: reintroduce inethashtables.h include to l2tpip (kabi).
  • kernfs: fix barrier usage in _kernfsnew_node() (bsc#1111666).
  • KVM: nVMX: Do not reread VMCS-agnostic state when switching VMCS (bsc#1114279).
  • KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1114279).
  • KVM: x86: Fix APIC page invalidation race (bsc#1174122).
  • l2tp: add skfamily checks to l2tpvalidatesocket (networking-stable-2006_07).
  • l2tp: do not use inethash()/inetunhash() (networking-stable-200607).
  • libceph: do not omit recoverydeletes in targetcopy() (bsc#1173462).
  • libceph: do not omit recoverydeletes in targetcopy() (bsc#1174113).
  • libceph: ignore pool overlay and cache logic on redirects (bsc#1173146).
  • libnvdimm/bus: Fix waitnvdimmbusprobeidle() ABBA deadlock (bsc#1171753).
  • libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant (bsc#1171753).
  • libnvdimm/bus: Stop holding nvdimmbuslistmutex over _nd_ioctl() (bsc#1171753).
  • libnvdimm: cover up changes in struct nvdimm_bus (bsc#1171753).
  • libnvdimm: cover up ndpfnsb changes (bsc#1171759).
  • libnvdimm/dax: Pick the right alignment default when creating dax devices (bsc#1171759).
  • libnvdimm/label: Remove the dpa align check (bsc#1171759).
  • libnvdimm/of_pmem: Provide a unique name for bus provider (bsc#1171739).
  • libnvdimm/pfn_dev: Add a build check to make sure we notice when struct page size change (bsc#1171743).
  • libnvdimm/pfn_dev: Add page size and struct page size to pfn superblock (bsc#1171759).
  • libnvdimm/pfn: Prevent raw mode fallback if pfn-infoblock valid (bsc#1171743).
  • libnvdimm/pmem: Advance namespace seed for specific probe errors (bsc#1171743).
  • libnvdimm/region: Initialize bad block for volatile namespaces (bnc#1151927 5.3.6).
  • libnvdimm/region: Rewrite probesuccess() to advanceseeds() (bsc#1171743).
  • libnvdimm: Use PAGESIZE instead of SZ4K for align check (bsc#1171759).
  • loop: replace killbdev with invalidatebdev (bsc#1173820).
  • lpfcdebugfs: get rid of pointless accessok() (bsc#1172687 bsc#1171530).
  • lpfc: Synchronize NVME transport and lpfc driver devloss_tmo (bcs#1173060).
  • media: cec: silence shift wrapping warning in _cecslogaddrs() (git-fixes).
  • media: si2157: Better check for running tuner in init (bsc#1111666).
  • mlxsw: core: Do not use WQMEMRECLAIM for mlxsw ordered workqueue (git-fixes).
  • mlxsw: core: Do not use WQMEMRECLAIM for mlxsw workqueue (git-fixes).
  • mlxsw: pci: Return error on PCI reset timeout (git-fixes).
  • mlxsw: spectrumacltcam: Position vchunk in a vregion list properly (networking-stable-200512).
  • mlxsw: spectrum: Disallow prio-tagged packets when PVID is removed (git-fixes).
  • mlxsw: spectrum_dpipe: Add missing error path (git-fixes).
  • mlxsw: spectrum: Prevent force of 56G (git-fixes).
  • mlxsw: spectrum_router: Refresh nexthop neighbour when it becomes dead (git-fixes).
  • mlxsw: spectrumrouter: Remove inappropriate usage of WARNON() (git-fixes).
  • mlxsw: spectrum_switchdev: Add MDB entries in prepare phase (git-fixes).
  • mlxsw: spectrum_switchdev: Do not treat static FDB entries as sticky (git-fixes).
  • mmc: sdhci: do not enable card detect interrupt for gpio cd type (bsc#1111666).
  • mmc: sdhci-msm: Set SDHCIQUIRKMULTIBLOCKREADACMD12 quirk (bsc#1111666).
  • mvpp2: remove misleading comment (git-fixes).
  • net: be more gentle about silly gso requests coming from user (networking-stable-200607).
  • net: check untrusted gsosize at kernel entry (networking-stable-2006_07).
  • net/cxgb4: Check the return from t4queryparams properly (git-fixes).
  • net: dsa: bcm_sf2: Fix node reference count (git-fixes).
  • net: dsa: loop: Add module soft dependency (networking-stable-200516).
  • net: dsa: mt7530: fix roaming from DSA user ports (networking-stable-200527).
  • net: ena: add intrmoderrxinterval to struct enacom_dev and use it (git-fixes).
  • net: ena: add missing ethtool TX timestamping indication (git-fixes).
  • net: ena: avoid memory access violation by validating req_id properly (git-fixes).
  • net: ena: do not wake up tx queue when down (git-fixes).
  • net: ena: ena-com.c: prevent NULL pointer dereference (git-fixes).
  • net: ena: ethtool: use correct value for crc32 hash (git-fixes).
  • net: ena: fix continuous keep-alive resets (git-fixes).
  • net: ena: fix corruption of devidxtohosttbl (git-fixes).
  • net: ena: fix default tx interrupt moderation interval (git-fixes).
  • net: ena: fix incorrect default RSS key (git-fixes).
  • net: ena: fix incorrectly saving queue numbers when setting RSS indirection table (git-fixes).
  • net: ena: fix issues in setting interrupt moderation params in ethtool (git-fixes).
  • net: ena: fix potential crash when rxfh key is NULL (git-fixes).
  • net: ena: fix retrieval of nonadaptive interrupt moderation intervals (git-fixes).
  • net: ena: fix uses of round_jiffies() (git-fixes).
  • net: ena: make ena rxfh support ETHRSSHASHNOCHANGE (git-fixes).
  • net: ena: reimplement set/get_coalesce() (git-fixes).
  • net: ena: rss: do not allocate key when not supported (git-fixes).
  • net: ena: rss: fix failure to get indirection table (git-fixes).
  • net: ena: rss: store hash function as values and not bits (git-fixes).
  • netfilter: ctnetlink: netns exit must wait for callbacks (bsc#1169795).
  • net: fix a potential recursive NETDEVFEATCHANGE (networking-stable-200516).
  • net: inetcsk: Fix soreuseport bind-address cache in tb->fast* (networking-stable-200527).
  • net: ipip: fix wrong address family in init error path (networking-stable-200527).
  • net: ipvlan: Fix ipvlan device tso disabled while NETIFFIP_CSUM is set (git-fixes).
  • net: macsec: preserve ingress frame ordering (networking-stable-200512).
  • net/mlx4core: drop useless LISTHEAD (git-fixes).
  • net/mlx4_core: fix a memory leak bug (git-fixes).
  • net/mlx4core: Fix use of ENOSPC around mlx4counteralloc() (networking-stable-2005_12).
  • net/mlx5: Add command entry handling completion (networking-stable-200527).
  • net/mlx5: Avoid panic when setting vport rate (git-fixes).
  • net/mlx5: Continue driver initialization despite debugfs failure (git-fixes).
  • net/mlx5e: ethtool, Fix a typo in WOL function names (git-fixes).
  • net/mlx5e: Fix traffic duplication in ethtool steering (git-fixes).
  • net/mlx5e: Remove unnecessary clear_bit()s (git-fixes).
  • net/mlx5e: Update netdev txq on completions during closure (networking-stable-200527).
  • net/mlx5: Fix command entry leak in Internal Error State (networking-stable-200512).
  • net/mlx5: Fix crash upon suspend/resume (networking-stable-200607).
  • net/mlx5: Fix forced completion access non initialized command entry (networking-stable-200512).
  • net: mvmdio: allow up to four clocks to be specified for orion-mdio (git-fixes).
  • net: mvpp2: prs: Do not override the sign bit in SRAM parser shift (git-fixes).
  • net: phy: fix aneg restart in phyethtoolseteee (networking-stable-2005_16).
  • netpriocgroup: Fix unlimited memory leak of v2 cgroups (networking-stable-2005_16).
  • net: qede: stop adding events on an already destroyed workqueue (git-fixes).
  • net: qed: fix excessive QM ILT lines consumption (git-fixes).
  • net: qed: fix NVMe login fails over VFs (git-fixes).
  • net: qrtr: Fix passing invalid reference to qrtrlocalenqueue() (networking-stable-200527).
  • net: revert 'net: get rid of an signed integer overflow in ipidentsreserve()' (networking-stable-200527).
  • net sched: fix reporting the first-time use timestamp (networking-stable-200527).
  • net: stricter validation of untrusted gso packets (networking-stable-200512).
  • net/tls: Fix skpsock refcnt leak in bpfexectxverdict() (networking-stable-200512).
  • net/tls: Fix skpsock refcnt leak when in tlsdataready() (networking-stable-2005_12).
  • net: usb: qmiwwan: add support for DW5816e (networking-stable-2005_12).
  • net: usb: qmiwwan: add Telit 0x1050 composition (networking-stable-2006_07).
  • net: usb: qmiwwan: add Telit LE910C1-EUX composition (networking-stable-2006_07).
  • net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3getrss() (bsc#1172484).
  • nfp: bpf: fix code-gen bug on BPFALU | BPFXOR | BPF_K (git-fixes).
  • nilfs2: fix null pointer dereference at nilfssegctordo_construct() (bsc#1173857).
  • nvdimm: Avoid race between probe and reading device attributes (bsc#1170442).
  • nvme: check for NVMECTRLLIVE in nvmereportns_ids() (bcs#1171558 bsc#1159058).
  • nvme: do not update multipath disk information if the controller is down (bcs#1171558 bsc#1159058).
  • objtool: Clean instruction state before each function validation (bsc#1169514).
  • objtool: Ignore empty alternatives (bsc#1169514).
  • ocfs2: no need try to truncate file beyond i_size (bsc#1171841).
  • padata: ensure the reorder timer callback runs on the correct CPU (git-fixes).
  • padata: reorder work kABI fixup (git-fixes).
  • PCI/AER: Remove HEST/FIRMWARE_FIRST parsing for AER ownership (bsc#1174356).
  • PCI/AER: Use only _OSC to determine AER ownership (bsc#1174356).
  • PCI: Generalize multi-function power dependency device links (bsc#1111666).
  • PCI: hv: Change pciprotocolversion to per-hbus (bsc#1172871, bsc#1172872).
  • PCI: hv: Fix the PCI HyperV probe failure path to release resource properly (bsc#1172871, bsc#1172872).
  • PCI: hv: Introduce hvmsientry (bsc#1172871, bsc#1172872).
  • PCI: hv: Move hypercall related definitions into tlfs header (bsc#1172871, bsc#1172872).
  • PCI: hv: Move retarget related structures into tlfs header (bsc#1172871, bsc#1172872).
  • PCI: hv: Reorganize the code in preparation of hibernation (bsc#1172871, bsc#1172872).
  • PCI: hv: Retry PCI bus D0 entry on invalid device state (bsc#1172871, bsc#1172872).
  • PCI: pciehp: Fix indefinite wait on sysfs requests (git-fixes).
  • PCI: pciehp: Support interrupts sent from D3hot (git-fixes).
  • pci: Revive pcidev _aerfirmwarefirst* fields for kABI (bsc#1174356).
  • perf/x86/amd: Constrain Large Increment per Cycle events (git-fixes).
  • perf/x86/amd: Constrain Large Increment per Cycle events (git-fixes).
  • perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity (git-fixes).
  • perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity (git-fixes).
  • perf/x86/amd/ibs: Fix sample bias for dispatched micro-ops (git-fixes).
  • perf/x86/amd/ibs: Fix sample bias for dispatched micro-ops (git-fixes).
  • perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) (git-fixes).
  • perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) (git-fixes).
  • perf/x86/amd/iommu: Make the 'amdiommuattr_groups' symbol static (git-fixes).
  • perf/x86/amd/iommu: Make the 'amdiommuattr_groups' symbol static (git-fixes).
  • perf/x86/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs (git-fixes stable).
  • perf/x86/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs (git-fixes stable).
  • perf/x86/amd/uncore: Set the thread mask for F17h L3 PMCs (git-fixes).
  • perf/x86/amd/uncore: Set the thread mask for F17h L3 PMCs (git-fixes).
  • perf/x86/amd/uncore: Set ThreadMask and SliceMask for L3 Cache perf events (git-fixes stable).
  • perf/x86/amd/uncore: Set ThreadMask and SliceMask for L3 Cache perf events (git-fixes stable).
  • perf/x86: Enable free running PEBS for REGS_USER/INTR (git-fixes).
  • perf/x86: Enable free running PEBS for REGS_USER/INTR (git-fixes).
  • perf/x86: Fix incorrect PEBS_REGS (git-fixes).
  • perf/x86: Fix incorrect PEBS_REGS (git-fixes).
  • perf/x86/intel: Add generic branch tracing check to intelpmuhas_bts() (git-fixes).
  • perf/x86/intel: Add generic branch tracing check to intelpmuhas_bts() (git-fixes).
  • perf/x86/intel: Add proper condition to run sched_task callbacks (git-fixes).
  • perf/x86/intel: Add proper condition to run sched_task callbacks (git-fixes).
  • perf/x86/intel/bts: Fix the use of page_private() (git-fixes).
  • perf/x86/intel/bts: Fix the use of page_private() (git-fixes).
  • perf/x86/intel: Fix PT PMI handling (git-fixes).
  • perf/x86/intel: Fix PT PMI handling (git-fixes).
  • perf/x86/intel: Move branch tracing setup to the Intel-specific source file (git-fixes).
  • perf/x86/intel: Move branch tracing setup to the Intel-specific source file (git-fixes).
  • perf/x86/intel/uncore: Add Node ID mask (git-fixes).
  • perf/x86/intel/uncore: Add Node ID mask (git-fixes).
  • perf/x86/intel/uncore: Fix PCI BDF address of M3UPI on SKX (git-fixes).
  • perf/x86/intel/uncore: Fix PCI BDF address of M3UPI on SKX (git-fixes).
  • perf/x86/intel/uncore: Handle invalid event coding for free-running counter (git-fixes).
  • perf/x86/uncore: Fix event group support (git-fixes).
  • perf/x86/uncore: Fix event group support (git-fixes).
  • platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() (bsc#1111666).
  • PM / Domains: Allow genpd users to specify default active wakeup behavior (git-fixes).
  • powerpc/book3s64: Export hastransparenthugepage() related functions (bsc#1171759).
  • powerpc/book3s64/pkeys: Fix pkeyaccesspermitted() for execute disable pkey (bsc#1065729).
  • powerpc/fadump: fix race between pstore write and fadump crash trigger (bsc#1168959 ltc#185010).
  • powerpc/xmon: Reset RCU and soft lockup watchdogs (bsc#1065729).
  • power: vexpress: add suppressbindattrs to true (bsc#1111666).
  • pppoe: only process PADT targeted at local interfaces (networking-stable-200516).
  • qed: reduce maximum stack frame size (git-fixes).
  • qlcnic: fix missing release in qlcnic83xxinterrupt_test (git-fixes).
  • r8152: support additional Microsoft Surface Ethernet Adapter variant (networking-stable-200527).
  • RDMA/efa: Set maximum pkeys device attribute (bsc#1111666)
  • README.BRANCH: Add Takashi Iwai as primary maintainer.
  • regmap: debugfs: Do not sleep while atomic for fast_io regmaps (bsc#1111666).
  • Revert commit e918e570415c ('tpm_tis: Remove the HID IFX0102') (bsc#1111666).
  • Revert 'thermal: mediatek: fix register index error' (bsc#1111666).
  • rpm/kernel-docs.spec.in: Require python-packaging for build.
  • rtnetlink: Fix memory(net_device) leak when ->newlink fails (git-fixes).
  • s390: fix syscallgeterror for compat processes (git-fixes).
  • s390/qdio: consistently restore the IRQ handler (git-fixes).
  • s390/qdio: lock device while installing IRQ handler (git-fixes).
  • s390/qdio: put thinint indicator after early error (git-fixes).
  • s390/qdio: tear down thinint indicator after early error (git-fixes).
  • s390/qeth: fix error handling for isolation mode cmds (git-fixes).
  • schchoke: avoid potential panic in chokereset() (networking-stable-200512).
  • schsfq: validate silly quantum values (networking-stable-2005_12).
  • scripts/gitsort/gitsort.py: add bluetooth/bluetooth-next.git repository
  • scsi: aacraid: fix a signedness bug (bsc#1174296).
  • scsi: hisisas: fix calls to dmasetmaskand_coherent() (bsc#1174296).
  • scsi: lpfc: Add an internal trace log buffer (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Add blkiopoll support for latency improvment (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Add support to display if adapter dumps are available (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Allow applications to issue Common Set Features mailbox command (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Avoid another null dereference in lpfcsli4hba_unset() (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix inconsistent indenting (bsc#1158983).
  • scsi: lpfc: Fix interrupt assignments when multiple vectors are supported on same CPU (bsc#1158983).
  • scsi: lpfc: Fix kdump hang on PPC (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix language in 0373 message to reflect non-error message (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix less-than-zero comparison of unsigned value (bsc#1158983).
  • scsi: lpfc: Fix missing MDS functionality (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix NVMe rport deregister and registration during ADISC (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix oops due to overrun when reading SLI3 data (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix shost refcount mismatch when deleting vport (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix stack trace seen while setting rrq active (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Fix unused assignment in lpfcsli4bsglinkdiag_test (bsc#1172687 bsc#1171530).
  • scsi: lpfc: Update lpfc version to 12.8.0.2 (bsc#1158983).
  • scsi: megaraid_sas: Fix a compilation warning (bsc#1174296).
  • scsi: mpt3sas: Fix double free in attach error handling (bsc#1174296).
  • scsi: qedf: Add port_id getter (bsc#1150660).
  • scsi: qla2xxx: Fix a condition in qla2x00findallfabricdevs() (bsc#1174296).
  • scsi: qla2xxx: Set NVMe status code for failed NVMe FCP request (bsc#1158983).
  • sctp: Do not add the shutdown timer if its already been added (networking-stable-200527).
  • sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed (networking-stable-200527).
  • spi: fix initial SPI_SR value in spi-fsl-dspi (bsc#1111666).
  • spi: pxa2xx: Apply CS clk quirk to BXT (bsc#1111666).
  • spi: spidev: fix a race between spidevrelease and spidevremove (bsc#1111666).
  • spi: spi-sun6i: sun6ispitransfer_one(): fix setting of clock rate (bsc#1111666).
  • staging: comedi: verify array index is correct before using it (bsc#1111666).
  • SUNRPC: The TCP back channel mustn't disappear while requests are outstanding (bsc#1152624).
  • tg3: driver sleeps indefinitely when EEH errors exceed eehmaxfreezes (bsc#1173284).
  • timers: Add a function to start/reduce a timer (networking-stable-200527).
  • tpmtis: extra chip->ops check on error path in tpmtiscoreinit (bsc#1111666).
  • tpm_tis: Remove the HID IFX0102 (bsc#1111666).
  • tracing: Fix event trigger to accept redundant spaces (git-fixes).
  • tty: hvc_console, fix crashes on parallel open/close (git-fixes).
  • tunnel: Propagate ECT(1) when decapsulating as recommended by RFC6040 (networking-stable-200512).
  • ubifs: remove broken lazytime support (bsc#1173826).
  • usb: add USBQUIRKDELAY_INIT for Logitech C922 (git-fixes).
  • USB: c67x00: fix use after free in c67x00givebackurb (bsc#1111666).
  • usb: chipidea: core: add wakeup support for extcon (bsc#1111666).
  • usb: dwc2: Fix shutdown callback in platform (bsc#1111666).
  • usb: dwc3: gadget: introduce cancelled_list (git-fixes).
  • usb: dwc3: gadget: never call ->complete() from ->ep_queue() (git-fixes).
  • usb: dwc3: gadget: Properly handle ClearFeature(halt) (git-fixes).
  • usb: dwc3: gadget: Properly handle failed kick_transfer (git-fixes).
  • USB: ehci: reopen solution for Synopsys HC bug (git-fixes).
  • usb: gadget: fix potential double-free in m66592_probe (bsc#1111666).
  • usb: gadget: udc: atmel: fix uninitialized read in debug printk (bsc#1111666).
  • usb: gadget: udc: atmel: remove outdated comment in usbaepdisable() (bsc#1111666).
  • usb: gadget: udc: Potential Oops in error handling code (bsc#1111666).
  • usb: host: ehci-exynos: Fix error check in exynosehciprobe() (bsc#1111666).
  • usbnet: smsc95xx: Fix use-after-free after removal (bsc#1111666).
  • USB: ohci-sm501: Add missed iounmap() in remove (bsc#1111666).
  • USB: serial: ch341: add new Product ID for CH340 (bsc#1111666).
  • USB: serial: cypress_m8: enable Simply Automated UPB PIM (bsc#1111666).
  • USB: serial: iuu_phoenix: fix memory corruption (bsc#1111666).
  • USB: serial: option: add GosunCn GM500 series (bsc#1111666).
  • USB: serial: option: add Quectel EG95 LTE modem (bsc#1111666).
  • vfio/pci: Fix SR-IOV VF handling with MMIO blocking (bsc#1174123).
  • vfs: Fix EOVERFLOW testing in putcompatstatfs64 (bnc#1151927 5.3.6).
  • virtio: virtioconsole: add missing MODULEDEVICE_TABLE() for rproc serial (git-fixes).
  • vmxnet3: add geneve and vxlan tunnel offload support (bsc#1172484).
  • vmxnet3: add support to get/set rx flow hash (bsc#1172484).
  • vmxnet3: allow rx flow hash ops only when rss is enabled (bsc#1172484).
  • vmxnet3: avoid format strint overflow warning (bsc#1172484).
  • vmxnet3: prepare for version 4 changes (bsc#1172484).
  • vmxnet3: Remove always false conditional statement (bsc#1172484).
  • vmxnet3: remove redundant initialization of pointer 'rq' (bsc#1172484).
  • vmxnet3: remove unused flag 'rxcsum' from struct vmxnet3_adapter (bsc#1172484).
  • vmxnet3: Replace msleep(1) with usleep_range() (bsc#1172484).
  • vmxnet3: update to version 4 (bsc#1172484).
  • vmxnet3: use correct hdr reference when packet is encapsulated (bsc#1172484).
  • vsock: fix timeout in vsockaccept() (networking-stable-2006_07).
  • vxlan: Avoid infinite loop when suppressing NS messages with invalid options (git-fixes).
  • wil6210: make sure Rx ring sizes are correlated (git-fixes).
  • x86/apic: Install an empty physflatinitapic_ldr (bsc#1163309).
  • x86/events/intel/ds: Add PERFSAMPLEPERIOD into PEBSFREERUNNINGFLAGS (git-fixes).
  • x86/events/intel/ds: Add PERFSAMPLEPERIOD into PEBSFREERUNNINGFLAGS (git-fixes).
  • x86/{mce,mm}: Unmap the entire page if the whole page is affected and poisoned (bsc#1172257).
  • x86/reboot/quirks: Add MacBook6,1 reboot quirk (bsc#1114279).
  • xhci: Fix incorrect EPSTATEMASK (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Server 12 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-16.22.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "4.12.14-16.22.1",
            "kernel-azure-devel": "4.12.14-16.22.1",
            "kernel-devel-azure": "4.12.14-16.22.1",
            "kernel-syms-azure": "4.12.14-16.22.1",
            "kernel-azure-base": "4.12.14-16.22.1",
            "kernel-source-azure": "4.12.14-16.22.1"
        }
    ]
}