SUSE-SU-2021:3748-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20213748-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:3748-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:3748-1
Related
Published
2021-11-19T16:17:29Z
Modified
2021-11-19T16:17:29Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563).
  • CVE-2021-3715: Fixed a use-after-free in route4change() in net/sched/clsroute.c (bsc#1190349).
  • CVE-2021-33033: Fixed a use-after-free in cipsov4genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109).
  • CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rfconninfo object (bsc#1190067).
  • CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avccapmt mishandled bounds checking (bsc#1184673).
  • CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063).
  • CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983).
  • CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985).
  • CVE-2021-42252: Fixed an issue inside aspeedlpcctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479).
  • CVE-2021-41864: Fixed preallocelemsand_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317).
  • CVE-2021-42008: Fixed a slab out-of-bounds write in the decodedata function in drivers/net/hamradio/6pack.c. Input from a process that had the CAPNET_ADMIN capability could have lead to root access (bsc#1191315).
  • CVE-2021-37159: Fixed use-after-free and a double free inside hsofreenetdevice in drivers/net/usb/hso.c when unregisternetdev is called without checking for the NETREG_REGISTERED state (bnc#1188601).

The following non-security bugs were fixed:

  • IB/hfi1: Fix abba locking issue with sc_disable() (git-fixes)
  • KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729).
  • NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628).
  • NFS: Fix backport error - dir_cookie is a pointer to a u64, not a u64.
  • PM: base: power: do not try to use non-existing RTC for storing data (git-fixes).
  • SMB3.1.1: Fix ids returned in POSIX query dir (bsc#1190317).
  • SMB3.1.1: do not log warning message if server does not populate salt (bsc#1190317).
  • SMB3.1.1: fix mount failure to some servers when compression enabled (bsc#1190317).
  • SMB3.1.1: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1190317).
  • SMB3.1.1: update comments clarifying SPNEGO info in negprot response (bsc#1190317).
  • SMB3: Add new info level for query directory (bsc#1190317).
  • SMB3: Add support for getting and setting SACLs (bsc#1190317).
  • SMB3: Fix mkdir when idsfromsid configured on mount (bsc#1190317).
  • SMB3: Resolve data corruption of TCP server info fields (bsc#1190317).
  • SMB3: add support for recognizing WSL reparse tags (bsc#1190317).
  • SMB3: avoid confusing warning message on mount to Azure (bsc#1190317).
  • SMB3: fix readpage for large swap cache (bsc#1190317).
  • SMB3: incorrect file id in requests compounded with open (bsc#1190317).
  • SMB3: update structures for new compression protocol definitions (bsc#1190317).
  • USB: cdc-acm: fix break reporting (git-fixes).
  • USB: cdc-acm: fix racy tty buffer accesses (git-fixes).
  • USB: iowarrior: fix control-message timeouts (git-fixes).
  • USB: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes).
  • USB: serial: keyspan: fix memleak on probe errors (git-fixes).
  • USB: serial: option: add Telit LN920 compositions (git-fixes).
  • USB: serial: option: add device id for Foxconn T99W265 (git-fixes).
  • USB: xhci: dbc: fix tty registration race (git-fixes).
  • bitmap: remove unused function declaration (git-fixes).
  • blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452).
  • cdc_ncm: Set NTB format again after altsetting switch for Huawei devices (git-fixes).
  • ceph: take snapemptylock atomically with snaprealm refcount change (bsc#1191888).
  • cifs: Add getsecuritytype_str function to return sec type (bsc#1190317).
  • cifs: Avoid field over-reading memcpy() (bsc#1190317).
  • cifs: Change SIDs in ACEs while transferring file ownership (bsc#1190317).
  • cifs: Clarify SMB1 code for POSIX Create (bsc#1190317).
  • cifs: Clarify SMB1 code for POSIX Lock (bsc#1190317).
  • cifs: Clarify SMB1 code for POSIX delete file (bsc#1190317).
  • cifs: Clarify SMB1 code for SetFileSize (bsc#1190317).
  • cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1190317).
  • cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1190317).
  • cifs: Clarify SMB1 code for delete (bsc#1190317).
  • cifs: Clarify SMB1 code for rename open file (bsc#1190317).
  • cifs: Display local UID details for SMB sessions in DebugData (bsc#1190317).
  • cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1190317).
  • cifs: Enable sticky bit with cifsacl mount option (bsc#1190317).
  • cifs: Fix cachedfid refcnt leak in openshroot (bsc#1190317).
  • cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1190317).
  • cifs: Fix cifsacl ACE mask for group and others (bsc#1190317).
  • cifs: Fix double add page to memcg when cifs_readpages (bsc#1190317).
  • cifs: Fix in error types returned for out-of-credit situations (bsc#1190317).
  • cifs: Fix unix perm bits to cifsacl conversion for 'other' bits (bsc#1190317).
  • cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1190317).
  • cifs: If a corrupted DACL is returned by the server, bail out (bsc#1190317).
  • cifs: Make extract_hostname function public (bsc#1190317).
  • cifs: Make extract_sharename function public (bsc#1190317).
  • cifs: Print the address and port we are connecting to in genericipconnect() (bsc#1190317).
  • cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1190317).
  • cifs: Silently ignore unknown oplock break handle (bsc#1190317).
  • cifs: add FALLOCFLINSERT_RANGE support (bsc#1190317).
  • cifs: add a function to get a cached dir based on its dentry (bsc#1190317).
  • cifs: add a timestamp to track when the lease of the cached dir was taken (bsc#1190317).
  • cifs: add shutdown support (bsc#1190317).
  • cifs: add support for FALLOCFLCOLLAPSE_RANGE (bsc#1190317).
  • cifs: added WARN_ON for all the count decrements (bsc#1190317).
  • cifs: ask for more credit on async read/write code paths (bsc#1190317).
  • cifs: avoid extra calls in posixinfoparse (bsc#1190317).
  • cifs: check pointer before freeing (bsc#1190317).
  • cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1190317).
  • cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1190317).
  • cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1190317).
  • cifs: cleanup misc.c (bsc#1190317).
  • cifs: compute fullpath already in cifsreaddir() (bsc#1190317).
  • cifs: constify path argument of ->make_node() (bsc#1190317).
  • cifs: constify pathname arguments in a bunch of helpers (bsc#1190317).
  • cifs: convert listforeach to entry variant in cifs_debug.c (bsc#1190317).
  • cifs: convert listforeach to entry variant in smb2misc.c (bsc#1190317).
  • cifs: convert to use be32addcpu() (bsc#1190317).
  • cifs: create sd context must be a multiple of 8 (bsc#1190317).
  • cifs: detect dead connections only when echoes are enabled (bsc#1190317).
  • cifs: do not fail _smbsend_rqst if non-fatal signals are pending (bsc#1190317).
  • cifs: dump Security Type info in DebugData (bsc#1190317).
  • cifs: fix DFS mount with cifsacl/modefromsid (bsc#1190317).
  • cifs: fix NULL dereference in smb2checkmessage() (bsc#1190317).
  • cifs: fix SMB1 error path in cifsgetfileinfounix (bsc#1190317).
  • cifs: fix a memleak with modefromsid (bsc#1190317).
  • cifs: fix allocation size on newly created files (bsc#1190317).
  • cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1190317).
  • cifs: fix fallocate when trying to allocate a hole (bsc#1190317).
  • cifs: fix leaked reference on requeued write (bsc#1190317).
  • cifs: fix missing null session check in mount (bsc#1190317).
  • cifs: fix missing spinlock around update to ses->status (bsc#1190317).
  • cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1190317).
  • cifs: fix reference leak for tlink (bsc#1190317).
  • cifs: fix rsize/wsize to be negotiated values (bsc#1190317).
  • cifs: fix string declarations and assignments in tracepoints (bsc#1190317).
  • cifs: fix the out of range assignment to bit fields in parseserverinterfaces (bsc#1190317).
  • cifs: handle 'nolease' option for vers=1.0 (bsc#1190317).
  • cifs: handle -EINTR in cifs_setattr (bsc#1190317).
  • cifs: handle ERRBaduid for SMB1 (bsc#1190317).
  • cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1190317).
  • cifs: have ->mkdir() handle race with another client sanely (bsc#1190317).
  • cifs: improve fallocate emulation (bsc#1190317).
  • cifs: make buildpathfrom_dentry() return const char * (bsc#1190317).
  • cifs: make const array static, makes object smaller (bsc#1190317).
  • cifs: make locking consistent around the server session status (bsc#1190317).
  • cifs: map STATUSACCOUNTLOCKED_OUT to -EACCES (bsc#1190317).
  • cifs: minor kernel style fixes for comments (bsc#1190317).
  • cifs: minor simplification to smb2isnetworknamedeleted (bsc#1190317).
  • cifs: missing null check for newinode pointer (bsc#1190317).
  • cifs: move some variables off the stack in smb2ioctlquery_info (bsc#1190317).
  • cifs: move the check for nohandlecache into open_shroot (bsc#1190317).
  • cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1190317).
  • cifs: pass a path to open_shroot and check if it is the root or not (bsc#1190317).
  • cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1190317).
  • cifs: prevent truncation from long to int in waitforfree_credits (bsc#1190317).
  • cifs: reduce stack use in smb2compoundop (bsc#1190317).
  • cifs: refactor createsdbuf() and and avoid corrupting the buffer (bsc#1190317).
  • cifs: remove old dead code (bsc#1190317).
  • cifs: remove some minor warnings pointed out by kernel test robot (bsc#1190317).
  • cifs: remove the retry in cifspoxislock_set (bsc#1190317).
  • cifs: remove two cases where rc is set unnecessarily in sidtoid (bsc#1190317).
  • cifs: remove unnecessary copies of tcon->crfid.fid (bsc#1190317).
  • cifs: remove various function description warnings (bsc#1190317).
  • cifs: rename the _shroot functions to _cached_dir (bsc#1190317).
  • cifs: retry lookup and readdir when EAGAIN is returned (bsc#1190317).
  • cifs: return cachedfid from openshroot (bsc#1190317).
  • cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1190317).
  • cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (bsc#1190317).
  • cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1190317).
  • cifs: store a pointer to the root dentry in cifssbinfo once we have completed mounting the share (bsc#1190317).
  • cifs: update ctime and mtime during truncate (bsc#1190317).
  • cifs: update new ACE pointer after populatenewaces (bsc#1190317).
  • cifs: use echo_interval even when connection not ready (bsc#1190317).
  • cifs: use the expiry output of dns_query to schedule next resolution (bsc#1190317).
  • crypto: qat - detect PFVF collision after ACK (git-fixes).
  • crypto: qat - disregard spurious PFVF interrupts (git-fixes).
  • crypto: s5p-sss - Add error handling in s5paesprobe() (git-fixes).
  • ext4: fix potential infinite loop in ext4dxreaddir() (bsc#1191662).
  • ext4: fix reserved space counter leakage (bsc#1191450).
  • fs, mm: fix race in unlinking swapfile (bsc#1191455).
  • fs: copy BTRFSIOC[SG]ET_FSLABEL to vfs (bsc#1191500).
  • ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267).
  • gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes).
  • gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes).
  • gianfar: Replace skbreallocheadroom with skbcowhead for PTP (git-fixes).
  • gianfar: simplify FCS handling and fix memory leak (git-fixes).
  • icmpv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241).
  • ipc: remove memcg accounting for sops objects in do_semtimedop()
  • ipv4: fix race condition between route lookup and invalidation (bsc#1190397).
  • ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241).
  • ipv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241).
  • kernel, fs: Introduce and use setrestartfn() and archsetrestart_data() (bsc#1191713).
  • kernel/locking/mutex.c: remove caller signal_pending branch predictions (bsc#1050549).
  • lib: ioviterfaultinreadable() should do nothing in xarray case (bsc#1191579).
  • locking/mutex: clear MUTEXFLAGS if waitlist is empty due to signal (git-fixes).
  • locking/pvqspinlock/x86: Use LOCKPREFIX in _pvqueuedspin_unlock() assembly code (bsc#1050549).
  • net: cdc_eem: fix tx fixup skb leak (git-fixes).
  • net: cdcncm: correct overhead in delayedndp_size (git-fixes).
  • net: cdcncm: use taskletinit() for tasklet_struct init (git-fixes).
  • net: hso: add failure handler for addnetdevice (git-fixes).
  • net: hso: fix NULL-deref on disconnect regression (git-fixes).
  • net: hso: fix null-ptr-deref during tty device unregistration (git-fixes).
  • net: hso: remove redundant unused variable dev (git-fixes).
  • net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241).
  • net: mana: Fix error handling in manacreaterxq() (git-fixes, bsc#1191801).
  • net: usb: Fix uninit-was-stored issue in asixreadphy_addr() (git-fixes).
  • net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (git-fixes).
  • net: usb: qmi_wwan: support ZTE P685M modem (git-fixes).
  • netsched: clsroute: remove the right filter from hashtable (networking-stable-200328).
  • netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes).
  • ocfs2: Fix data corruption after conversion from inline format (bsc#1190795).
  • ocfs2: Fix data corruption on truncate (bsc#1190795).
  • ocfs2: do not zero pages beyond i_size (bsc#1190795).
  • ocfs2: drop acl cache for directories too (bsc#1191667).
  • powerpc/64s: Fix crashes when toggling entry flush barrier
  • powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729).
  • powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729).
  • powerpc/bpf: Use bctrl for making function calls (bsc#1065729).
  • powerpc/lib: Fix emulate_step() std test (bsc#1065729).
  • powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes).
  • powerpc/xive: Discard disabled interrupts in getirqchipstate() (bsc#1085030 git-fixes).
  • pseries/eeh: Fix the kdump kernel crash during eehpseriesinit (git-fixes).
  • s390x: Turn off CONFIGNUMAEMU (jsc#SLE-11600).
  • scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145).
  • scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145).
  • scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145).
  • scsi: lpfc: Fix crash when nvmet transport calls host_release (bsc#1192145).
  • scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145).
  • scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349).
  • scsi: lpfc: Fix use-after-free in lpfcunregrpi() routine (bsc#1192145).
  • scsi: lpfc: Revert LOGTRACEEVENT back to LOGINIT prior to driverresource_setup() (bsc#1192145).
  • scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145).
  • scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145).
  • scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941).
  • scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941).
  • scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941).
  • scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941).
  • scsi: qla2xxx: Call processresponsequeue() in Tx path (bsc#1190941).
  • scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941).
  • scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941).
  • scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941).
  • scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941).
  • scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941).
  • scsi: qla2xxx: Do not call fcblockscsi_eh() during bus reset (bsc#1190941).
  • scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941).
  • scsi: qla2xxx: Fix NVMe retry (bsc#1190941).
  • scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941).
  • scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941).
  • scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941).
  • scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941).
  • scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941).
  • scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941).
  • scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941).
  • scsi: qla2xxx: Fix port type info (bsc#1190941).
  • scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941).
  • scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941).
  • scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941).
  • scsi: qla2xxx: Open-code qla2xxxehdevice_reset() (bsc#1190941).
  • scsi: qla2xxx: Open-code qla2xxxehtarget_reset() (bsc#1190941).
  • scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941).
  • scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941).
  • scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941).
  • scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941).
  • scsi: qla2xxx: Sync queue idx with queuepairmap idx (bsc#1190941).
  • scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941).
  • scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941).
  • scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941).
  • scsi: qla2xxx: Use scsicmdtorq() instead of scsicmnd.request (bsc#1190941).
  • scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941).
  • scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941).
  • scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941).
  • scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941).
  • scsi: qla2xxx: edif: Fix stale session (bsc#1190941).
  • scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941).
  • scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941).
  • scsi: smartpqi: Fix an error code in pqigetraid_map() (git-fixes).
  • sctp: fully initialize v4 addr in some functions (bsc#1188563).
  • selinux: fix error initialization in inodedoinitwith_dentry() (git-fixes).
  • selinux: fix inodedoinitwithdentry() LABELINVALID error handling (git-fxes).
  • smb2: fix use-after-free in smb2ioctlquery_info() (bsc#1190317).
  • smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1190317).
  • smb3: Add new parm 'nodelete' (bsc#1190317).
  • smb3: Avoid Mid pending list corruption (bsc#1190317).
  • smb3: Call cifs reconnect from demultiplex thread (bsc#1190317).
  • smb3: Handle error case during offload read path (bsc#1190317).
  • smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1190317).
  • smb3: add some missing definitions from MS-FSCC (bsc#1190317).
  • smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1190317).
  • smb3: do not try to cache root directory if dir leases not supported (bsc#1190317).
  • smb3: fix access denied on change notify request to some servers (bsc#1190317).
  • smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1190317).
  • smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1190317).
  • smb3: fix possible access to uninitialized pointer to DACL (bsc#1190317).
  • smb3: fix stat when special device file and mounted with modefromsid (bsc#1190317).
  • smb3: fix unneeded error message on change notify (bsc#1190317).
  • smb3: limit noisy error (bsc#1190317).
  • smb3: minor update to compression header definitions (bsc#1190317).
  • smb3: prevent races updating CurrentMid (bsc#1190317).
  • smb3: rc uninitialized in one fallocate path (bsc#1190317).
  • smb3: remove static checker warning (bsc#1190317).
  • tcp/dccp: fix possible race _inetlookup_established() (bsc#1180624).
  • tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729).
  • uapi: nfnetlink_cthelper.h: fix userspace compilation error (git-fixes).
  • update structure definitions from updated protocol documentation (bsc#1190317).
  • usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes).
  • usb: hso: fix error handling code of hsocreatenet_device (git-fixes).
  • usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes).
  • usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes).
  • usb: xhci: dbc: Simplify error handling in 'xhcidbcalloc_requests()' (git-fixes).
  • usb: xhci: dbc: Use GFPKERNEL instead of GFPATOMIC in 'xhcidbcalloc_requests()' (git-fixes).
  • x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1114648).
  • x86/resctrl: Free the ctrlval arrays when domainsetupmon_state() fails (bsc#1114648).
  • xen: fix setting of maxpfn in sharedinfo (git-fixes).
  • xen: reset legacy rtc flag for PV domU (git-fixes).
  • xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006).
  • xfs: always honor OWN_UNKNOWN rmap removal requests (bsc#1191500).
  • xfs: convert growfs AG header init to use buffer lists (bsc#1191500).
  • xfs: factor ag btree root block initialisation (bsc#1191500).
  • xfs: factor out AG header initialisation from growfs core (bsc#1191500).
  • xfs: fix check on struct_version for versions 4 or greater (bsc#1191500, git-fixes).
  • xfs: fix string handling in label get/set functions (bsc#1191500, git-fixes).
  • xfs: hoist xfsfsgeometry to libxfs (bsc#1191500).
  • xfs: implement online get/set fs label (bsc#1191500).
  • xfs: make imaxpct changes in growfs separate (bsc#1191500).
  • xfs: move growfs core to libxfs (bsc#1191500).
  • xfs: one-shot cached buffers (bsc#1191500).
  • xfs: refactor the geometry structure filling function (bsc#1191500).
  • xfs: rework secondary superblock updates in growfs (bsc#1191500).
  • xfs: separate secondary sb update in growfs (bsc#1191500).
  • xfs: turn ag header initialisation into a table driven operation (bsc#1191500).
  • xfs: xfsfsops: drop useless LISTHEAD (bsc#1191500, git-fixes).
References

Affected packages

SUSE:Linux Enterprise High Availability Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "dlm-kmp-default": "4.12.14-122.98.1",
            "gfs2-kmp-default": "4.12.14-122.98.1",
            "ocfs2-kmp-default": "4.12.14-122.98.1",
            "cluster-md-kmp-default": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_98-default": "1-8.7.1",
            "kernel-default-kgraft": "4.12.14-122.98.1",
            "kernel-default-kgraft-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kgraft-patch-SLE12-SP5_Update_25

Package

Name
kgraft-patch-SLE12-SP5_Update_25
Purl
pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_25&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-8.7.1

Ecosystem specific

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_98-default": "1-8.7.1",
            "kernel-default-kgraft": "4.12.14-122.98.1",
            "kernel-default-kgraft-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-docs

Package

Name
kernel-docs
Purl
pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.98.1",
            "kernel-obs-build": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-obs-build

Package

Name
kernel-obs-build
Purl
pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.98.1",
            "kernel-obs-build": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.98.1",
            "kernel-devel": "4.12.14-122.98.1",
            "kernel-default-base": "4.12.14-122.98.1",
            "kernel-default-man": "4.12.14-122.98.1",
            "kernel-default": "4.12.14-122.98.1",
            "kernel-source": "4.12.14-122.98.1",
            "kernel-syms": "4.12.14-122.98.1",
            "kernel-default-devel": "4.12.14-122.98.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.98.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-extra": "4.12.14-122.98.1"
        }
    ]
}