The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bug fixes.
The following security bugs were fixed:
CVE-2020-25705: A flaw in the way reply ICMP packets are limited in was found that allowed to quickly scan open UDP ports. This flaw allowed an off-path remote user to effectively bypassing source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software and services that rely on UDP source port randomization (like DNS) are indirectly affected as well. Kernel versions may be vulnerable to this issue (bsc#1175721, bsc#1178782).
CVE-2020-8694: Insufficient access control for some Intel(R) Processors may have allowed an authenticated user to potentially enable information disclosure via local access (bsc#1170415).
CVE-2020-25668: Fixed a use-after-free in confontop() (bsc#1178123).
CVE-2020-25704: Fixed a memory leak in perfeventparseaddrfilter() (bsc#1178393).
CVE-2020-25669: Fixed a use-after-free read in sunkbd_reinit() (bsc#1178182).
CVE-2020-25656: Fixed a concurrency use-after-free in vtdokdgkb_ioctl (bnc#1177766).
CVE-2020-25285: Fixed a race condition between hugetlb sysctl handlers in mm/hugetlb.c (bnc#1176485).
CVE-2020-0430: Fixed an OOB read in skb_headlen of /include/linux/skbuff.h (bnc#1176723).
CVE-2020-14351: Fixed a race in the perfmmapclose() function (bsc#1177086).
CVE-2020-16120: Fixed a permissions issue in ovlpathopen() (bsc#1177470).
CVE-2020-12351: Implemented a kABI workaround for bluetooth l2cap_ops filter addition (bsc#1177724).
CVE-2020-12352: Fixed an information leak when processing certain AMP packets aka 'BleedingTooth' (bsc#1177725).
CVE-2020-25212: Fixed a TOCTOU mismatch in the NFS client code (bnc#1176381).
CVE-2020-25645: Fixed an an issue in IPsec that caused traffic between two Geneve endpoints to be unencrypted (bnc#1177511).
The following non-security bugs were fixed:
9P: Cast to loff_t before multiplying (git-fixes).
acpi-cpufreq: Honor _PSD table setting on new AMD CPUs (git-fixes).
ACPI: debug: do not allow debugging when ACPI is disabled (git-fixes).
coredump: fix crash when umh is disabled (bsc#1177753).
crypto: algif_skcipher - EBUSY on aio should be an error (git-fixes).
crypto: bcm - Verify GCM/CCM key length in setkey (git-fixes).
crypto: ccp - fix error handling (git-fixes).
crypto: ixp4xx - Fix the size used in a 'dmafreecoherent()' call (git-fixes).
crypto: mediatek - Fix wrong return value in mtkdescring_alloc() (git-fixes).
crypto: omap-sham - fix digcnt register handling with export/import (git-fixes).
cxl: Rework error message for incompatible slots (bsc#1055014 git-fixes).
cypto: mediatek - fix leaks in mtkdescring_alloc (git-fixes).
device property: Do not clear secondary pointer for shared primary firmware node (git-fixes).
device property: Keep secondary firmware node secondary by type (git-fixes).
Disable ipa-clones dump for KMP builds (bsc#1178330) The feature is not really useful for KMP, and rather confusing, so let's disable it at building out-of-tree codes
dmaengine: dma-jz4780: Fix race in jz4780dmatx_status (git-fixes).
docs: ABI: sysfs-c2port: remove a duplicated entry (git-fixes).
drbd: code cleanup by using sendpageok() to check page for kernelsendpage() (bsc#1172873).
drivers: net: add missing interrupt.h include (git-fixes).
drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case (git-fixes).
drm/amd/display: Do not invoke kgdb_breakpoint() unconditionally (git-fixes).
drm/amd/display: HDMI remote sink need mode validation for Linux (git-fixes).
drm/amdgpu: do not map BO in reserved region (git-fixes).
writeback: Fix sync livelock due to bdirtytime processing (bsc#1177755).
writeback: Protect inode->iiolist with inode->i_lock (bsc#1177755).
x86/apic: Unify duplicated local apic timer clockevent initialization (bsc#1112178).
x86, fakenuma: Fix invalid starting node ID (git-fixes (mm/x86/fakenuma)).
x86/fpu: Allow multiple bits in clearcpuid= parameter (bsc#1112178).
x86/kexec: Use up-to-dated screen_info copy to fill boot params (bsc#1175306).
x86/unwind/orc: Fix inactive tasks with stack pointer in %sp on GCC 10 compiled kernels (bsc#1058115 bsc#1176907).
x86/xen: disable Firmware First mode for correctable memory errors (bsc#1176713).
xen/blkback: use lateeoi irq binding (XSA-332 bsc#1177411).
xen/events: add a new 'late EOI' evtchn framework (XSA-332 bsc#1177411).
xen/events: add a proper barrier to 2-level uevent unmasking (XSA-332 bsc#1177411).
xen/events: avoid removing an event channel while handling it (XSA-331 bsc#1177410).
xen/events: block rogue events for some time (XSA-332 bsc#1177411).
xen/events: defer eoi in case of excessive number of events (XSA-332 bsc#1177411).
xen/events: do not use chip_data for legacy IRQs (XSA-332 bsc#1065600).
xen/events: fix race in evtchnfifounmask() (XSA-332 bsc#1177411).
xen/events: switch user event channels to lateeoi model (XSA-332 bsc#1177411).
xen/events: use a common cpu hotplug hook for event channels (XSA-332 bsc#1177411).
xen/gntdev.c: Mark pages as dirty (bsc#1065600).
xen/netback: use lateeoi irq binding (XSA-332 bsc#1177411).
xen/pciback: use lateeoi irq binding (XSA-332 bsc#1177411).
xen/scsiback: use lateeoi irq binding (XSA-332 bsc#1177411).
xen: XEN uses irqdesc::irqdatacommon::handler_data to store a per interrupt XEN data pointer which contains XEN specific information (XSA-332 bsc#1065600).
xfs: avoid infinite loop when cancelling CoW blocks after writeback failure (bsc#1178027).
xfs: do not update mtime on COW faults (bsc#1167030).
xfs: fix a missing unlock on error in xfsfsmap_blocks (git-fixes).
xfs: fix flags argument to rmap lookup when converting shared file rmaps (git-fixes).
xfs: fix rmap key and record comparison functions (git-fixes).
xfs: flush new eof page on truncate to avoid post-eof corruption (git-fixes).
xfs: limit entries returned when counting fsmap records (git-fixes).
xgbe: no need to check return value of debugfs_create functions (git-fixes).
xgbe: switch to more generic VxLAN detection (git-fixes).