SUSE-SU-2021:2303-1
- Source
- https://www.suse.com/support/update/announcement/2021/suse-su-20212303-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:2303-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2021:2303-1
- Related
- Published
- 2021-07-13T07:46:29Z
- Modified
- 2021-07-13T07:46:29Z
- Summary
- Security update for the Linux Kernel
- Details
-
The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666)
- CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601)
- CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595)
- CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554)
- CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452)
- CVE-2021-0129: Fixed improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463).
- CVE-2020-36385: Fixed a use-after-free via the ctxlist in some ucmamigrateid situations where ucmaclose is called (bnc#1187050).
- CVE-2020-26558: Fixed Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 (bnc#1179610, bnc#1186463).
- CVE-2020-36386: Fixed an out-of-bounds read issue in hciextendedinquiryresultevt (bnc#1187038).
The following non-security bugs were fixed:
- acpica: Clean up context mutex during object deletion (git-fixes).
- alsa: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes).
- alsa: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes).
- alsa: timer: Fix master timer notification (git-fixes).
- alx: Fix an error handling path in 'alx_probe()' (git-fixes).
- arch: Add arch-dependent support markers in supported.conf (bsc#1186672)
- arch: Add the support for kernel-FLAVOR-optional subpackage (jsc#SLE-11796)
- ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes).
- ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes).
- ASoC: max98088: fix ni clock divider calculation (git-fixes).
- ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes).
- ASoC: sti-sas: add missing MODULEDEVICETABLE (git-fixes).
- ath6kl: return error code in ath6klwmisetroamlrssi_cmd() (git-fixes).
- batman-adv: Avoid WARN_ON timing related checks (git-fixes).
- be2net: Fix an error handling path in 'be_probe()' (git-fixes).
- blk-settings: align maxsectors on 'logicalblock_size' boundary (bsc#1185195).
- block: Discard page cache of zone reset target range (bsc#1187402).
- block: return the correct bvec when checking for gaps (bsc#1187143).
- block: return the correct bvec when checking for gaps (bsc#1187144).
- bluetooth: fix the erroneous flush_work() order (git-fixes).
- bluetooth: use correct lock to prevent UAF of hdev object (git-fixes).
- bnxten: Call bnxtethtoolfree() in bnxtinit_one() error path (jsc#SLE-8371 bsc#1153274).
- bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274).
- bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274).
- bpfilter: Specify the log level for the kmsg message (bsc#1155518).
- brcmfmac: properly check for bus register errors (git-fixes).
- btrfs: open device without devicelistmutex (bsc#1176771).
- bus: ti-sysc: Fix flakey idling of uarts and stop using swsupsidleact (git-fixes).
- can: mcbausb: fix memory leak in mcbausb (git-fixes).
- ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927).
- cfg80211: avoid double free of PMSR request (git-fixes).
- cfg80211: make certificate generation more robust (git-fixes).
- cgroup1: do not allow '\n' in renaming (bsc#1187972).
- char: hpet: add checks after calling ioremap (git-fixes).
- CPU: Startup failed when SNC (sub-numa cluster) is enabled with 3 NIC add-on cards installed (bsc#1187263).
- cxgb4: avoid accessing registers when clearing filters (git-fixes).
- cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389).
- cxgb4: fix wrong shift (git-fixes).
- dax: Add a wakeup mode parameter to putunlockedentry() (bsc#1187411).
- dax: Add an enum for specifying dax wakup mode (bsc#1187411).
- dax: fix ENOMEM handling in grabmappingentry() (bsc#1184212).
- dax: Wake up all waiters after invalidating dax entry (bsc#1187411).
- dmaengine: ALTERAMSGDMA depends on HASIOMEM (git-fixes).
- dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes).
- dmaengine: qcomhidma: comment platformdriver_register call (git-fixes).
- dmaengine: QCOMHIDMAMGMT depends on HAS_IOMEM (git-fixes).
- dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes).
- drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes).
- drm/amd/amdgpu: fix refcount leak (git-fixes).
- drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes).
- drm/amd/display: Disconnect non-DP with no EDID (git-fixes).
- drm/amdgpu: Fix a use-after-free (git-fixes).
- drm/amdgpu: make sure we unpin the UVD BO (git-fixes).
- drm/tegra: sor: Do not leak runtime PM reference (git-fixes).
- drm: Fix use-after-free read in drm_getunique() (git-fixes).
- drm: Lock pointer access in drmmasterrelease() (git-fixes).
- dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes).
- efi: Allow EFIMEMORYXP and EFIMEMORYRO both to be cleared (git-fixes).
- efi: cper: fix snprintf() use in cperdimmerr_location() (git-fixes).
- ext4: fix bug on in ext4escacheextent as ext4splitextentat failed (bsc#1187408).
- ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404).
- ext4: fix error code in ext4commitsuper (bsc#1187407).
- ext4: fix memory leak in ext4fillsuper (bsc#1187409).
- FCOE: fcoewwnfrom_mac kABI fix (bsc#1187886).
- fs/nfs: Use fatalsignalpending instead of signal_pending (git-fixes).
- fs: fix reporting supported extra file attributes for statx() (bsc#1187410).
- ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes).
- ftrace: Free the trampoline when ftrace_startup() fails (git-fixes).
- fuse: BUGON correction in fusedevsplicewrite() (bsc#1187356).
- gpio: cadence: Add missing MODULEDEVICETABLE (git-fixes).
- gpu: Enable CONFIGPCIPF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691)
- gve: Add NULL pointer checks when freeing irqs (git-fixes).
- gve: Correct SKB queue index validation (git-fixes).
- gve: Upgrade memory barrier in poll routine (git-fixes).
- HID: Add BUSVIRTUAL to hidconnect logging (git-fixes).
- HID: gt683r: add missing MODULEDEVICETABLE (git-fixes).
- HID: hid-input: add mapping for emoji picker key (git-fixes).
- HID: hid-sensor-hub: Return error for hidsetfield() failure (git-fixes).
- HID: i2c-hid: fix format string mismatch (git-fixes).
- HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes).
- HID: magicmouse: fix NULL-deref on disconnect (git-fixes).
- HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes).
- HID: pidff: fix error return code in hidpidffinit() (git-fixes).
- HID: quirks: Set INCREMENTUSAGEON_DUPLICATE for Saitek X65 (git-fixes).
- HID: usbhid: fix info leak in hidsubmitctrl (git-fixes).
- HID: usbhid: Fix race between usbhidclose() and usbhidstop() (git-fixes).
- hwmon: (dell-smm-hwmon) Fix index values (git-fixes).
- hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes).
- i2c: mpc: Make use of i2crecoverbus() (git-fixes).
- i2c: qcom-geni: Suspend and resume the bus during SYSTEMSLEEPPM ops (git-fixes).
- ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926).
- ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926).
- ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes).
- isdn: mISDN: correctly handle phinfo allocation failure in hfcsusbph_info (git-fixes).
- isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes).
- isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes).
- ixgbe: fix large MTU request from VF (git-fixes).
- kABI workaround for struct lis3lv02d change (git-fixes).
- kernel-binary.spec.in: Add Supplements: for -extra package on Leap kernel-$flavor-extra should supplement kernel-$flavor on Leap, like it does on SLED, and like the kernel-$flavor-optional package does.
- kernel-binary.spec.in: build-id check requires elfutils.
- kernel-binary.spec.in: Regenerate makefile when not using mkmakefile.
- kernel-binary.spec: Only use mkmakefile when it exists Linux 5.13 no longer had a mkmakefile script
- kernel: kexecfile: fix error return code of kexeccalculatestoredigests() (git-fixes).
- kthread: prevent deadlock when kthreadmoddelayedwork() races with kthreadcanceldelayedwork_sync() (bsc#1187867).
- kthread_worker: split code for canceling the delayed work timer (bsc#1187867).
- kyber: fix out of bounds access when preempted (bsc#1187403).
- lib: vdso: Remove CROSSCOMPILECOMPAT_VDSO (bsc#1164648,jsc#SLE-11493).
- libertas: register sysfs groups properly (git-fixes).
- locking/mutex: clear MUTEXFLAGS if waitlist is empty due to signal (git-fixes).
- md: Fix missing unused status line of /proc/mdstat (git-fixes).
- media: dvb: Add check on sp8870_readreg return (git-fixes).
- media: dvb: Add check on sp8870_readreg return (git-fixes).
- media: gspca: mt9m111: Check write_bridge for timeout (git-fixes).
- media: gspca: mt9m111: Check write_bridge for timeout (git-fixes).
- media: gspca: properly check for errors in po1030_probe() (git-fixes).
- media: gspca: properly check for errors in po1030_probe() (git-fixes).
- media: mtk-mdp: Check return value of ofclkget (git-fixes).
- media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes).
- media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes).
- mei: request autosuspend after sending rx flow control (git-fixes).
- mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes).
- module: limit enabling module.sig_enforce (git-fixes).
- net/mlx4: Fix EEPROM dump support (git-fixes).
- net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes).
- net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464).
- net/mlx5: Fix PBMC register mapping (git-fixes).
- net/mlx5: Fix placement of logmaxflow_counter (git-fixes).
- net/mlx5: Fix sleep while atomic in mlx5eswitchget_vepa (git-fixes).
- net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes).
- net/mlx5e: Fix multipath lag activation (git-fixes).
- net/mlx5e: Fix nullptr in addvlanpush_action() (git-fixes).
- net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes).
- net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes).
- net/nfc/rawsock.c: fix a permission check bug (git-fixes).
- net/sched: act_ct: handle DNAT tuple collision (bsc#1154353).
- net/x25: Return the correct errno code (git-fixes).
- net: bnx2: Fix error return code in bnx2initboard() (git-fixes).
- net: fix iteration for sctp transport seq_files (git-fixes).
- net: hns3: Limiting the scope of vectorringchain variable (git-fixes).
- net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353).
- net: mvpp2: add mvpp2phylinkto_port() helper (bsc#1187171).
- netxennic: Fix an error handling path in 'netxennic_probe()' (git-fixes).
- nfc: fix NULL ptr dereference in llcpsockgetname() after failed connect (git-fixes).
- NFC: SUSE specific brutal fix for runtime PM (bsc#1185589).
- NFS: Deal correctly with attribute generation counter overflow (git-fixes).
- NFS: Do not corrupt the value of pgbyteswritten in nfsdorecoalesce() (git-fixes).
- NFS: Do not discard pNFS layout segments that are marked for return (git-fixes).
- NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes).
- NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes).
- NFS: Fix a potential NULL dereference in nfsgetclient() (git-fixes).
- NFS: fix an incorrect limit in filelayoutdecodelayout() (git-fixes).
- NFS: Fix an Oopsable condition in _nfspageioaddrequest() (git-fixes).
- NFS: Fix use-after-free in nfs4initclient() (git-fixes).
- nfsd: register pernet ops last, unregister first (git-fixes).
- NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes).
- NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes).
- NFSv4.2: Always flush out writes in nfs42procfallocate() (git-fixes).
- NFSv4.2: fix return value of nfs4getsecuritylabel() (git-fixes).
- NFSv4: Do not discard segments marked for return in pnfsreturn_layout() (git-fixes).
- NFSv4: Fix a NULL pointer dereference in pnfsmarkmatchinglsegsreturn() (git-fixes).
- NFSv4: Fix deadlock between nfs4evictinode() and nfs4opendataget_inode() (git-fixes).
- NFSv4: Fix v4.0/v4.1 SEEKDATA return -ENOTSUPP when set NFSV4_2 config (git-fixes).
- ocfs2: fix data corruption by fallocate (bsc#1187412).
- PCI/LINK: Remove bandwidth notification (bsc#1183712).
- PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes).
- PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes).
- PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes).
- PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes).
- PCI: Mark TI C667X to avoid bus reset (git-fixes).
- PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes).
- perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEPPCIPCU_3 (bsc#1184685).
- pid: take a reference when initializing
cad_pid(bsc#1152489). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes).
- platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes).
- platform/x86: intelpunitipc: Append MODULEDEVICETABLE for ACPI (git-fixes).
- platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes).
- PM: sleep: Add pmdebugmessages kernel command line option (bsc#1186752).
- pNFS/flexfiles: fix incorrect size check in decodenfsfh() (git-fixes).
- pNFS/NFSv4: Fix a layout segment leak in pnfslayoutprocess() (git-fixes).
- qla2xxx: synchronize rport devlosstmo setting (bsc#1182470 bsc#1185486).
- qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes).
- radeon: use memcpy_to/fromio for UVD fw upload (git-fixes).
- regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes).
- regulator: core: resolve supply for boot-on/always-on regulators (git-fixes).
- regulator: max77620: Use devicesetofnodefrom_dev() (git-fixes).
- Revert 'ath6kl: return error code in ath6klwmisetroamlrssi_cmd()' (git-fixes).
- Revert 'brcmfmac: add a check for the status of usb_register' (git-fixes).
- Revert 'char: hpet: fix a missing check of ioremap' (git-fixes).
- Revert 'char: hpet: fix a missing check of ioremap' (git-fixes).
- Revert 'dmaengine: qcom_hidma: Check for driver register failure' (git-fixes).
- Revert 'ecryptfs: replace BUG_ON with error handling code' (bsc#1187413).
- Revert 'ibmvnic: simplify resetlongterm_buff function' (bsc#1186206 ltc#191041).
- Revert 'isdn: mISDN: Fix potential NULL pointer dereference of kzalloc' (git-fixes).
- Revert 'isdn: mISDNinfineon: fix potential NULL pointer dereference' (git-fixes).
- Revert 'libertas: add checks for the return value of sysfscreategroup' (git-fixes).
- Revert 'media: dvb: Add check on sp8870_readreg' (git-fixes).
- Revert 'media: dvb: Add check on sp8870_readreg' (git-fixes).
- Revert 'media: gspca: Check the return value of write_bridge for timeout' (git-fixes).
- Revert 'media: gspca: Check the return value of write_bridge for timeout' (git-fixes).
- Revert 'media: gspca: mt9m111: Check write_bridge for timeout' (git-fixes).
- Revert 'media: gspca: mt9m111: Check write_bridge for timeout' (git-fixes).
- Revert 'media: usb: gspca: add a missed check for gotolowpower' (git-fixes).
- Revert 'net: liquidio: fix a NULL pointer dereference' (git-fixes).
- Revert 'PCI: PM: Do not read power state in pcienabledevice_flags()' (git-fixes).
- Revert 'qlcnic: Avoid potential NULL pointer dereference' (git-fixes).
- Revert 'scsi: core: run queue if SCSI device queue isn't ready and queue is idle' (bsc#1186949).
- Revert 'serial: max310x: pass return value of spiregisterdriver' (git-fixes).
- Revert 'video: hgafb: fix potential NULL pointer dereference' (git-fixes).
- Revert 'video: imsttfb: fix potential NULL pointer dereferences' (bsc#1152489)
- rpm/kernel-binary.spec.in: Correct Supplements in optional subpkg (jsc#SLE-11796)
- rpm/kernel-binary.spec.in: Fix handling of +arch marker (bsc#1186672)
- rpm/split-modules: Avoid errors even if Module.* are not present
- s390/stack: fix possible register corruption with stack switch helper (bsc#1185677).
- sched/debug: Fix cgroup_path[] serialization (git-fixes)
- sched/fair: Keep loadavg and loadsum synced (git-fixes)
- scsi: aacraid: Fix an oops in error handling (bsc#1187072).
- scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950).
- scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951).
- scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952).
- scsi: be2iscsi: Fix a theoretical leak in beiscsicreateeqs() (bsc#1186953).
- scsi: be2iscsi: Revert 'Fix a theoretical leak in beiscsicreateeqs()' (bsc#1187067).
- scsi: bfa: Fix error return in bfadpciinit() (bsc#1186954).
- scsi: bnx2fc: Fix Kconfig warning and CNIC build errors (bsc#1186955).
- scsi: bnx2i: Requires MMU (bsc#1186956).
- scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883).
- scsi: csiostor: Fix wrong return value in csiohwprep_fw() (bsc#1186957).
- scsi: cumana2: Fix different devid between requestirq() and freeirq() (bsc#1186958).
- scsi: cxgb3i: Fix some leaks in initactopen() (bsc#1186959).
- scsi: cxgb4i: Fix TLS dependency (bsc#1186960).
- scsi: eesox: Fix different devid between requestirq() and free_irq() (bsc#1186961).
- scsi: fcoe: Fix mismatched fcoewwnfrom_mac declaration (bsc#1187886).
- scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962).
- scsi: hisi_sas: Fix IRQ checks (bsc#1186963).
- scsi: hisi_sas: Remove preemptible() (bsc#1186964).
- scsi: jazz_esp: Add IRQ check (bsc#1186965).
- scsi: libfc: Fix enum-conversion warning (bsc#1186966).
- scsi: libsas: Fix error path in sasnotifylldddevfound() (bsc#1186967).
- scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068).
- scsi: libsas: Set datadir as DMANONE if libata marks qc as NODATA (bsc#1186968).
- scsi: lpfc: Fix ancient double free (bsc#1186969).
- scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes).
- scsi: megaraid_sas: Check user-provided offsets (bsc#1186970).
- scsi: megaraid_sas: Clear affinity hint (bsc#1186971).
- scsi: megaraidsas: Do not call disableirq from process IRQ poll (bsc#1186972).
- scsi: megaraidsas: Fix MEGASASIOC_FIRMWARE regression (bsc#1186973).
- scsi: megaraidsas: Remove undefined ENABLEIRQ_POLL macro (bsc#1186974).
- scsi: mesh: Fix panic after host or bus reset (bsc#1186976).
- scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977).
- scsi: mpt3sas: Fix error return code of mpt3sasbaseattach() (bsc#1186978).
- scsi: mpt3sas: Fix ioctl timeout (bsc#1186979).
- scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980).
- scsi: pm80xx: Fix error return in pm8001pciprobe() (bsc#1186981).
- scsi: powertec: Fix different devid between requestirq() and free_irq() (bsc#1186982).
- scsi: qedi: Check for buffer overflow in qedisetpath() (bsc#1186983).
- scsi: qedi: Fix error return code of qediallocglobal_queues() (bsc#1186984).
- scsi: qedi: Fix missing destroyworkqueue() on error in _qedi_probe (bsc#1186985).
- scsi: qla2xxx: Prevent PRLI in target mode (git-fixes).
- scsi: qla4xxx: Fix an error handling path in 'qla4xxxgethost_stats()' (bsc#1186986).
- scsi: qla4xxx: Remove in_interrupt() (bsc#1186987).
- scsi: scsidebug: Add check for sdebugmax_queue during module init (bsc#1186988).
- scsi: scsidhalua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701).
- scsi: sd: Fix Opal support (bsc#1186989).
- scsi: sni_53c710: Add IRQ check (bsc#1186990).
- scsi: sun3x_esp: Add IRQ check (bsc#1186991).
- scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002).
- scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992).
- scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993).
- scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994).
- scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995).
- scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996).
- scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997).
- scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795).
- SCSI: ufs: fix ktime_t kabi change (bsc#1187795).
- scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998).
- scsi: ufs: Introduce UFSHCDQUIRKPRDTBYTEGRAN quirk (bsc#1187000).
- scsi: ufs: Make ufshcdprinttrs() consider UFSHCDQUIRKPRDTBYTEGRAN (bsc#1187069).
- scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001).
- scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980).
- scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003).
- scsi: ufshcd: use an enum for quirks (bsc#1186999).
- serial: max310x: unregister uart driver in case of failure and abort (git-fixes).
- serial: rp2: use 'requestfirmware' instead of 'requestfirmware_nowait' (git-fixes).
- spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes).
- spi: sprd: Add missing MODULEDEVICETABLE (git-fixes).
- spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32qspiwait_cmd() (git-fixes).
- staging: rtl8723bs: Fix uninitialized variables (git-fixes).
- sunrpc: fix refcount leak for rpc auth modules (git-fixes).
- SUNRPC: Handle major timeout in xprtadjusttimeout() (git-fixes).
- SUNRPC: Move fault injection call sites (git-fixes).
- SUNRPC: Set memallocnofssave() for sync tasks (git-fixes).
- svcrdma: disable timeouts on rdma backchannel (git-fixes).
- thermal/drivers/intel: Initialize RW trip to THERMALTEMPINVALID (git-fixes).
- tpm: fix error return code in tpm2getccattrstbl() (git-fixes).
- tracing: Correct the length check which causes memory corruption (git-fixes).
- tracing: Do no increment traceclockglobal() by one (git-fixes).
- tracing: Do not stop recording cmdlines when tracing is off (git-fixes).
- tracing: Do not stop recording comms if the trace file is being read (git-fixes).
- tracing: Restructure traceclockglobal() to never block (git-fixes).
- ttyprintk: Add TTY hangup callback (git-fixes).
- usb: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes).
- usb: core: reduce power-on-good delay time of root hub (git-fixes).
- usb: dwc3: core: fix kernel panic when do reboot (git-fixes).
- usb: dwc3: core: fix kernel panic when do reboot (git-fixes).
- usb: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes).
- usb: dwc3: ep0: fix NULL pointer exception (git-fixes).
- USB: fncm: ncmbitrate (speed) is unsigned (git-fixes).
- usb: f_ncm: only first packet of aggregate needs to start timer (git-fixes).
- usb: f_ncm: only first packet of aggregate needs to start timer (git-fixes).
- usb: fix various gadget panics on 10gbps cabling (git-fixes).
- usb: fix various gadget panics on 10gbps cabling (git-fixes).
- usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes).
- usb: gadget: eem: fix wrong eem header operation (git-fixes).
- usb: gadget: eem: fix wrong eem header operation (git-fixes).
- usb: gadget: ffs: Ensure iocompletion_wq is idle during unbind (git-fixes).
- usb: gadget: ffs: Ensure iocompletion_wq is idle during unbind (git-fixes).
- usb: musb: fix MUSBQUIRKBDISCONNECT99 handling (git-fixes).
- usb: pd: Set PDTSINKWAITCAP to 310ms (git-fixes).
- USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes).
- USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes).
- USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes).
- USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes).
- USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes).
- USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes).
- USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes).
- USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes).
- USB: serial: quatech2: fix control-request directions (git-fixes).
- USB: serial: tiusb3410_5052: add startech.com device id (git-fixes).
- usb: typec: mux: Fix copy-paste mistake in typecmuxmatch (git-fixes).
- usb: typec: mux: Fix matching with typecaltmodedesc (git-fixes).
- usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes).
- usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes).
- usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes).
- USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes).
- vfio/pci: Fix error return code in vfioecapinit() (git-fixes).
- vfio/pci: zapvmaptes() needs MMU (git-fixes).
- vfio/platform: fix module_put call in error flow (git-fixes).
- video: hgafb: correctly handle card detect failure during probe (git-fixes).
- video: hgafb: fix potential NULL pointer dereference (git-fixes).
- vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes).
- vrf: fix maximum MTU (git-fixes).
- vsock/vmci: log once the failed queue pair allocation (git-fixes).
- wireguard: allowedips: initialize list head in selftest (git-fixes).
- wireguard: do not use -O3 (git-fixes).
- wireguard: peer: allocate in kmem_cache (git-fixes).
- wireguard: peer: put frequently used members above cache lines (git-fixes).
- wireguard: queueing: get rid of per-peer ring buffers (git-fixes).
- wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes).
- wireguard: selftests: remove old conntrack kconfig value (git-fixes).
- wireguard: use synchronizenet rather than synchronizercu (git-fixes).
- x86/apic: Mark all legacy interrupts when IO/APIC is missing (bsc#1152489).
- x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489).
- x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489).
- x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489).
- x86: fix seq_file iteration for pat.c (git-fixes).
- xen-blkback: fix compatibility bug with single page rings (git-fixes).
- xen-pciback: reconfigure also from backend watch handler (git-fixes).
- xen-pciback: redo VF placement in the virtual topology (git-fixes).
- xen/evtchn: Change irqinfo lock to rawspinlock_t (git-fixes).
- xfrm: policy: Read seqcount outside of rcu-read side in xfrmpolicylookup_bytype (bsc#1185675).
- xprtrdma: Avoid Receive Queue wrapping (git-fixes).
- xprtrdma: rpcrdmamrpop() already does listdelinit() (git-fixes).
- References
-
- https://www.suse.com/support/update/announcement/2021/suse-su-20212303-1/
- https://bugzilla.suse.com/1152489
- https://bugzilla.suse.com/1153274
- https://bugzilla.suse.com/1154353
- https://bugzilla.suse.com/1155518
- https://bugzilla.suse.com/1164648
- https://bugzilla.suse.com/1174978
- https://bugzilla.suse.com/1176771
- https://bugzilla.suse.com/1179610
- https://bugzilla.suse.com/1182470
- https://bugzilla.suse.com/1183712
- https://bugzilla.suse.com/1184212
- https://bugzilla.suse.com/1184685
- https://bugzilla.suse.com/1185195
- https://bugzilla.suse.com/1185486
- https://bugzilla.suse.com/1185589
- https://bugzilla.suse.com/1185675
- https://bugzilla.suse.com/1185677
- https://bugzilla.suse.com/1185701
- https://bugzilla.suse.com/1186206
- https://bugzilla.suse.com/1186463
- https://bugzilla.suse.com/1186666
- https://bugzilla.suse.com/1186672
- https://bugzilla.suse.com/1186752
- https://bugzilla.suse.com/1186949
- https://bugzilla.suse.com/1186950
- https://bugzilla.suse.com/1186951
- https://bugzilla.suse.com/1186952
- https://bugzilla.suse.com/1186953
- https://bugzilla.suse.com/1186954
- https://bugzilla.suse.com/1186955
- https://bugzilla.suse.com/1186956
- https://bugzilla.suse.com/1186957
- https://bugzilla.suse.com/1186958
- https://bugzilla.suse.com/1186959
- https://bugzilla.suse.com/1186960
- https://bugzilla.suse.com/1186961
- https://bugzilla.suse.com/1186962
- https://bugzilla.suse.com/1186963
- https://bugzilla.suse.com/1186964
- https://bugzilla.suse.com/1186965
- https://bugzilla.suse.com/1186966
- https://bugzilla.suse.com/1186967
- https://bugzilla.suse.com/1186968
- https://bugzilla.suse.com/1186969
- https://bugzilla.suse.com/1186970
- https://bugzilla.suse.com/1186971
- https://bugzilla.suse.com/1186972
- https://bugzilla.suse.com/1186973
- https://bugzilla.suse.com/1186974
- https://bugzilla.suse.com/1186976
- https://bugzilla.suse.com/1186977
- https://bugzilla.suse.com/1186978
- https://bugzilla.suse.com/1186979
- https://bugzilla.suse.com/1186980
- https://bugzilla.suse.com/1186981
- https://bugzilla.suse.com/1186982
- https://bugzilla.suse.com/1186983
- https://bugzilla.suse.com/1186984
- https://bugzilla.suse.com/1186985
- https://bugzilla.suse.com/1186986
- https://bugzilla.suse.com/1186987
- https://bugzilla.suse.com/1186988
- https://bugzilla.suse.com/1186989
- https://bugzilla.suse.com/1186990
- https://bugzilla.suse.com/1186991
- https://bugzilla.suse.com/1186992
- https://bugzilla.suse.com/1186993
- https://bugzilla.suse.com/1186994
- https://bugzilla.suse.com/1186995
- https://bugzilla.suse.com/1186996
- https://bugzilla.suse.com/1186997
- https://bugzilla.suse.com/1186998
- https://bugzilla.suse.com/1186999
- https://bugzilla.suse.com/1187000
- https://bugzilla.suse.com/1187001
- https://bugzilla.suse.com/1187002
- https://bugzilla.suse.com/1187003
- https://bugzilla.suse.com/1187038
- https://bugzilla.suse.com/1187050
- https://bugzilla.suse.com/1187067
- https://bugzilla.suse.com/1187068
- https://bugzilla.suse.com/1187069
- https://bugzilla.suse.com/1187072
- https://bugzilla.suse.com/1187143
- https://bugzilla.suse.com/1187144
- https://bugzilla.suse.com/1187171
- https://bugzilla.suse.com/1187263
- https://bugzilla.suse.com/1187356
- https://bugzilla.suse.com/1187402
- https://bugzilla.suse.com/1187403
- https://bugzilla.suse.com/1187404
- https://bugzilla.suse.com/1187407
- https://bugzilla.suse.com/1187408
- https://bugzilla.suse.com/1187409
- https://bugzilla.suse.com/1187410
- https://bugzilla.suse.com/1187411
- https://bugzilla.suse.com/1187412
- https://bugzilla.suse.com/1187413
- https://bugzilla.suse.com/1187452
- https://bugzilla.suse.com/1187554
- https://bugzilla.suse.com/1187595
- https://bugzilla.suse.com/1187601
- https://bugzilla.suse.com/1187795
- https://bugzilla.suse.com/1187867
- https://bugzilla.suse.com/1187883
- https://bugzilla.suse.com/1187886
- https://bugzilla.suse.com/1187927
- https://bugzilla.suse.com/1187972
- https://bugzilla.suse.com/1187980
- https://www.suse.com/security/cve/CVE-2020-26558
- https://www.suse.com/security/cve/CVE-2020-36385
- https://www.suse.com/security/cve/CVE-2020-36386
- https://www.suse.com/security/cve/CVE-2021-0129
- https://www.suse.com/security/cve/CVE-2021-0512
- https://www.suse.com/security/cve/CVE-2021-0605
- https://www.suse.com/security/cve/CVE-2021-33624
- https://www.suse.com/security/cve/CVE-2021-34693
- https://www.suse.com/security/cve/CVE-2021-3573
Affected packages
SUSE:Linux Enterprise Module for Public Cloud 15 SP2 / kernel-azure
Package
- Name
- kernel-azure
- Purl
- purl:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2
SUSE:Linux Enterprise Module for Public Cloud 15 SP2 / kernel-source-azure
Package
- Name
- kernel-source-azure
- Purl
- purl:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2