SUSE-SU-2022:1163-1

Source
https://www.suse.com/support/update/announcement/2022/suse-su-20221163-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:1163-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2022:1163-1
Related
Published
2022-04-12T12:59:54Z
Modified
2022-04-12T12:59:54Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2022-0854: Fixed a memory leak flaw was found in the Linux kernels DMA subsystem. This flaw allowed a local user to read random memory from the kernel space. (bnc#1196823)
  • CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227)
  • CVE-2022-1199: Fixed null-ptr-deref and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198028)
  • CVE-2022-1205: Fixed null pointer dereference and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198027)
  • CVE-2022-1198: Fixed an use-after-free vulnerability that allow an attacker to crash the linux kernel by simulating Amateur Radio (bsc#1198030).
  • CVE-2022-1195: Fixed an use-after-free vulnerability which could allow a local attacker with a user privilege to execute a denial of service. (bsc#1198029)
  • CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel. (bnc#1198033)
  • CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux kernel. (bnc#1198032)
  • CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel. (bnc#1198031)
  • CVE-2022-1048: Fixed a race Condition in sndpcmhwfree leading to use-after-free due to the AB/BA lock with buffermutex and mmap_lock. (bsc#1197331)
  • CVE-2022-1055: Fixed a use-after-free in tcnewtfilter that could allow a local attacker to gain privilege escalation. (bnc#1197702)
  • CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c. (bsc#1196761)
  • CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462)
  • CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. (bnc#1197366)
  • CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343)
  • CVE-2022-27223: Fixed an out-of-array access in /usb/gadget/udc/udc-xilinx.c. (bsc#1197245)
  • CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aiopollcomplete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956)
  • CVE-2021-45402: Fixed a pointer leak in checkaluop() of kernel/bpf/verifier.c. (bsc#1196130).
  • CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers. (bsc#1196488)

The following non-security bugs were fixed:

  • ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (git-fixes).
  • ACPI: APEI: fix return value of __setup handlers (git-fixes).
  • ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (git-fixes).
  • ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (git-fixes).
  • ACPI: docs: enumeration: Discourage to use custom _DSM methods (git-fixes).
  • ACPI: docs: enumeration: Remove redundant .owner assignment (git-fixes).
  • ACPI: properties: Consistently return -ENOENT if there are no more references (git-fixes).
  • ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (git-fixes).
  • ALSA: cmipci: Restore aux vol on suspend/resume (git-fixes).
  • ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (git-fixes).
  • ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes).
  • ALSA: hda/realtek: Add quirk for ASUS GA402 (git-fixes).
  • ALSA: oss: Fix PCM OSS buffer allocation overflow (git-fixes).
  • ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (git-fixes).
  • ALSA: pcm: Add stream lock during PCM reset ioctl operations (git-fixes).
  • ALSA: spi: Add check for clk_enable() (git-fixes).
  • ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (git-fixes).
  • ASoC: atmelsscdai: Handle errors for clk_enable (git-fixes).
  • ASoC: atmel: Add missing ofnodeput() in at91sam9g20ekaudioprobe (git-fixes).
  • ASoC: codecs: wcd934x: Add missing ofnodeput() in wcd934xcodecparse_data (git-fixes).
  • ASoC: codecs: wcd934x: fix return value of wcd934xrxhphmodeput (git-fixes).
  • ASoC: dmaengine: do not use a NULL prepareslaveconfig() callback (git-fixes).
  • ASoC: dwc-i2s: Handle errors for clk_enable (git-fixes).
  • ASoC: fsi: Add check for clk_enable (git-fixes).
  • ASoC: fsl_spdif: Disable TX clock when stop (git-fixes).
  • ASoC: imx-es8328: Fix error return code in imxes8328probe() (git-fixes).
  • ASoC: msm8916-wcd-analog: Fix error handling in pm8916wcdanalogspmiprobe (git-fixes).
  • ASoC: msm8916-wcd-digital: Fix missing clkdisableunprepare() in msm8916wcddigital_probe (git-fixes).
  • ASoC: mxs-saif: Handle errors for clk_enable (git-fixes).
  • ASoC: mxs: Fix error handling in mxssgtl5000probe (git-fixes).
  • ASoC: rt5663: check the return value of devmkzalloc() in rt5663parse_dp() (git-fixes).
  • ASoC: SOF: Add missing ofnodeput() in imx8m_probe (git-fixes).
  • ASoC: SOF: topology: remove redundant code (git-fixes).
  • ASoC: sti: Fix deadlock via sndpcmstop_xrun() call (git-fixes).
  • ASoC: ti: davinci-i2s: Add check for clk_enable() (git-fixes).
  • ASoC: topology: Allow TLV control to be either read or write (git-fixes).
  • ASoC: topology: Optimize soctplgdapmgraphelems_load behavior (git-fixes).
  • ASoC: wm8350: Handle error for wm8350registerirq (git-fixes).
  • ASoC: xilinx: xlnxformatterpcm: Handle sysclk setting (git-fixes).
  • ax25: Fix NULL pointer dereference in ax25killby_device (git-fixes).
  • ax88179178a: Merge memcpy + le32tocpus to getunaligned_le32 (bsc#1196018).
  • block: update io_ticks when io hang (bsc#1197817).
  • block/wbt: fix negative inflight counter when remove scsi device (bsc#1197819).
  • bpf: Fix comment for helper bpfcurrenttaskundercgroup() (git-fixes).
  • bpf: Remove config check to enable bpf support for branch records (git-fixes bsc#1177028).
  • btrfs: avoid unnecessary lock and leaf splits when updating inode in the log (bsc#1194649).
  • btrfs: avoid unnecessary log mutex contention when syncing log (bsc#1194649).
  • btrfs: avoid unnecessary logging of xattrs during fast fsyncs (bsc#1194649).
  • btrfs: check error value from btrfsupdateinode in tree log (bsc#1194649).
  • btrfs: check if a log root exists before locking the log_mutex on unlink (bsc#1194649).
  • btrfs: check if a log tree exists at inode_logged() (bsc#1194649).
  • btrfs: do not commit delayed inode when logging a file in full sync mode (bsc#1194649).
  • btrfs: do not log new dentries when logging that a new name exists (bsc#1194649).
  • btrfs: eliminate some false positives when checking if inode was logged (bsc#1194649).
  • btrfs: fix race leading to unnecessary transaction commit when logging inode (bsc#1194649).
  • btrfs: fix race that causes unnecessary logging of ancestor inodes (bsc#1194649).
  • btrfs: fix race that makes inode logging fallback to transaction commit (bsc#1194649).
  • btrfs: fix race that results in logging old extents during a fast fsync (bsc#1194649).
  • btrfs: fixup error handling in fixupinodelink_counts (bsc#1194649).
  • btrfs: remove no longer needed full sync flag check at inode_logged() (bsc#1194649).
  • btrfs: Remove unnecessary check from joinrunninglog_trans (bsc#1194649).
  • btrfs: remove unnecessary directory inode item update when deleting dir entry (bsc#1194649).
  • btrfs: remove unnecessary list head initialization when syncing log (bsc#1194649).
  • btrfs: skip unnecessary searches for xattrs when logging an inode (bsc#1194649).
  • can: emsusb: emsusbstartxmit(): fix double devkfreeskb() in error path (git-fixes).
  • can: mcbausb: mcbausbstartxmit(): fix double devkfreeskb in error path (git-fixes).
  • can: mcba_usb: properly check endpoint type (git-fixes).
  • can: rcarcanfd: rcarcanfdchannelprobe(): register the CAN device when fully ready (git-fixes).
  • cifs: do not skip link targets when an I/O fails (bsc#1194625).
  • cifs: use the correct max-length for dentrypathraw() (bsc1196196).
  • clk: actions: Terminate clkdivtable with sentinel element (git-fixes).
  • clk: bcm2835: Remove unused variable (git-fixes).
  • clk: clps711x: Terminate clkdivtable with sentinel element (git-fixes).
  • clk: imx7d: Remove audiomclkroot_clk (git-fixes).
  • clk: Initialize orphan req_rate (git-fixes).
  • clk: loongson1: Terminate clkdivtable with sentinel element (git-fixes).
  • clk: nxp: Remove unused variable (git-fixes).
  • clk: qcom: gcc-msm8994: Fix gpll4 width (git-fixes).
  • clk: qcom: ipq8074: Use floor ops for SDCC1 clock (git-fixes).
  • clk: tegra: tegra124-emc: Fix missing putdevice() call in emcensureemcdriver (git-fixes).
  • clk: uniphier: Fix fixed-rate initialization (git-fixes).
  • clocksource: acpipm: fix return value of _setup handler (git-fixes).
  • clocksource/drivers/timer-of: Check return value of ofiomap in timerofbaseinit() (git-fixes).
  • cpufreq: schedutil: Destroy mutex before kobject_put() frees (git-fixes)
  • crypto: authenc - Fix sleep in atomic context in decrypt_tail (git-fixes).
  • crypto: cavium/nitrox - do not cast parameter in bit operations (git-fixes).
  • crypto: ccp - ccpdmaengineunregister release dma channels (git-fixes).
  • crypto: ccree - do not attempt 0 len DMA mappings (git-fixes).
  • crypto: mxs-dcp - Fix scatterlist processing (git-fixes).
  • crypto: qat - do not cast parameter in bit operations (git-fixes).
  • crypto: rsa-pkcs1pad - correctly get hash from source scatterlist (git-fixes).
  • crypto: rsa-pkcs1pad - fix buffer overread in pkcs1padverifycomplete() (git-fixes).
  • crypto: rsa-pkcs1pad - restore signature length check (git-fixes).
  • crypto: vmx - add missing dependencies (git-fixes).
  • dma/pool: create dma atomic pool only if dma zone has managed pages (bsc#1197501).
  • driver core: dd: fix return value of __setup handler (git-fixes).
  • drm: bridge: adv7511: Fix ADV7535 HPD enablement (git-fixes).
  • drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug (git-fixes).
  • drm/amd/pm: return -ENOTSUPP if there is no getdpmultimate_freq function (git-fixes).
  • drm/bridge: dw-hdmi: use safe format when first in bridge chain (git-fixes).
  • drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwldsiprobe (git-fixes).
  • drm/doc: overview before functions for drm_writeback.c (git-fixes).
  • drm/i915: Fix dbuf slice config lookup (git-fixes).
  • drm/i915/gem: add missing boundary check in vm_access (git-fixes).
  • drm/imx: parallel-display: Remove bus flags check in imxpdbridgeatomiccheck() (git-fixes).
  • drm/meson: Fix error handling when afbcd.ops->init fails (git-fixes).
  • drm/meson: osdafbcd: Add an exit callback to struct mesonafbcd_ops (git-fixes).
  • drm/msm/dpu: add DSPP blocks teardown (git-fixes).
  • drm/nouveau/acr: Fix undefined behavior in nvkmacrhsfwloadbl() (git-fixes).
  • drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings (git-fixes).
  • drm/sun4i: mixer: Fix P010 and P210 format numbers (git-fixes).
  • drm/vc4: crtc: Fix runtime_pm reference counting (git-fixes).
  • drm/vc4: crtc: Make sure the HDMI controller is powered when disabling (git-fixes).
  • drm/vrr: Set VRR capable prop only if it is attached to connector (git-fixes).
  • Drop HID multitouch fix patch (bsc#1197243),
  • ecryptfs: fix kernel panic with null dev_name (bsc#1197812).
  • ecryptfs: Fix typo in message (bsc#1197811).
  • EDAC: Fix calculation of returned address and next offset in edacalignptr() (bsc#1178134).
  • ext2: correct max file size computing (bsc#1197820).
  • firmware: google: Properly state IOMEM dependency (git-fixes).
  • firmware: qcom: scm: Remove reassignment to desc following initializer (git-fixes).
  • fscrypt: do not ignore minor_hash when hash is 0 (bsc#1197815).
  • gianfar: ethtool: Fix refcount leak in gfargetts_info (git-fixes).
  • gpio: ts4900: Do not set DAT and OE together (git-fixes).
  • gpiolib: acpi: Convert ACPI value of debounce to microseconds (git-fixes).
  • HID: multitouch: fix Dell Precision 7550 and 7750 button type (bsc#1197243).
  • hwmon: (pmbus) Add mutex to regulator ops (git-fixes).
  • hwmon: (pmbus) Add Vin unit off handling (git-fixes).
  • hwmon: (sch56xx-common) Replace WDOGACTIVE with WDOGHW_RUNNING (git-fixes).
  • hwrng: atmel - disable trng on failure path (git-fixes).
  • i915vma: Rename vmalookup to i915vmalookup (git-fixes).
  • ibmvnic: fix race between xmit and reset (bsc#1197302 ltc#197259).
  • iio: accel: mma8452: use the correct logic to get mma8452_data (git-fixes).
  • iio: adc: Add check for devmrequestthreaded_irq (git-fixes).
  • iio: afe: rescale: use s64 for temporary scale calculations (git-fixes).
  • iio: inkern: apply consumer scale on IIOVALINT cases (git-fixes).
  • iio: inkern: apply consumer scale when no channel scale is available (git-fixes).
  • iio: inkern: make a best effort on offset calculation (git-fixes).
  • Input: aiptek - properly check endpoint type (git-fixes).
  • iwlwifi: do not advertise TWT support (git-fixes).
  • kernel-binary.spec: Do not use the default certificate path (bsc#1194943).
  • KVM: SVM: Do not flush cache if hardware enforces cache coherency across encryption domains (bsc#1178134).
  • llc: fix netdevice reference leaks in llcuibind() (git-fixes).
  • mac80211: fix potential double free on mesh join (git-fixes).
  • mac80211: refuse aggregations sessions before authorized (git-fixes).
  • media: aspeed: Correct value for h-total-pixels (git-fixes).
  • media: bttv: fix WARNING regression on tunerless devices (git-fixes).
  • media: coda: Fix missing putdevice() call in codagetvdoadata (git-fixes).
  • media: davinci: vpif: fix unbalanced runtime PM get (git-fixes).
  • media: em28xx: initialize refcount before kref_get (git-fixes).
  • media: hantro: Fix overfill bottom register field name (git-fixes).
  • media: Revert 'media: em28xx: add missing em28xxcloseextension' (git-fixes).
  • media: stk1160: If start stream fails, return buffers with VB2BUFSTATE_QUEUED (git-fixes).
  • media: usb: go7007: s2250-board: fix leak in probe() (git-fixes).
  • media: video/hdmi: handle short reads of hdmi info frame (git-fixes).
  • membarrier: Execute SYNC_CORE on the calling thread (git-fixes)
  • membarrier: Explicitly sync remote cores when SYNC_CORE is (git-fixes)
  • memory: emif: Add check for setup_interrupts (git-fixes).
  • memory: emif: check the pointer temp in getdevicedetails() (git-fixes).
  • misc: alcor_pci: Fix an error handling path (git-fixes).
  • misc: sgi-gru: Do not cast parameter in bit operations (git-fixes).
  • mm_zone: add function to check if managed dma zone exists (bsc#1197501).
  • mm/page_alloc.c: do not warn allocation failure on zone DMA if no managed pages (bsc#1197501).
  • mmc: davincimmc: Handle error for clkenable (git-fixes).
  • mmc: meson: Fix usage of mesonmmcpost_req() (git-fixes).
  • net: dsa: mv88e6xxx: override existent unicast portvec in portfdbadd (git-fixes).
  • net: enetc: initialize the RFS and RSS memories (git-fixes).
  • net: hns3: add a check for tqpindex in hclgegetringchainfrommbx() (git-fixes).
  • net: phy: broadcom: Fix brcmfetconfig_init() (git-fixes).
  • net: phy: DP83822: clear MISR2 register to disable interrupts (git-fixes).
  • net: phy: marvell: Fix invalid comparison in the resume and suspend functions (git-fixes).
  • net: stmmac: set TxQ mode back to DCB after disabling CBS (git-fixes).
  • net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018).
  • net: watchdog: hold device global xmit lock during tx disable (git-fixes).
  • net/smc: Fix loop in smc_listen (git-fixes).
  • net/smc: fix using of uninitialized completions (git-fixes).
  • net/smc: fix wrong listdel in smclgrcleanupearly (git-fixes).
  • net/smc: Make sure the link_id is unique (git-fixes).
  • net/smc: Reset conn->lgr when link group registration fails (git-fixes).
  • netfilter: conntrack: do not refresh sctp entries in closed state (bsc#1197389).
  • netxen_nic: fix MSI/MSI-x interrupts (git-fixes).
  • NFC: port100: fix use-after-free in port100sendcomplete (git-fixes).
  • NFS: Avoid duplicate uncached readdir calls on eof (git-fixes).
  • NFS: Do not report writeback errors in nfs_getattr() (git-fixes).
  • NFS: Do not skip directory entries when doing uncached readdir (git-fixes).
  • NFS: Ensure the server had an up to date ctime before hardlinking (git-fixes).
  • NFS: Fix initialisation of nfsclient clflags field (git-fixes).
  • NFS: LOOKUP_DIRECTORY is also ok with symlinks (git-fixes).
  • NFS: Return valid errors from nfs2/3decodedirent() (git-fixes).
  • NFS: Use of mappingseterror() results in spurious errors (git-fixes).
  • nfsd: nfsd4setclientidconfirm mistakenly expires confirmed client (git-fixes).
  • NFSv4.1: do not retry BINDCONNTO_SESSION on session error (git-fixes).
  • NFSv4/pNFS: Fix another issue with a list iterator pointing to the head (git-fixes).
  • pinctrl: mediatek: Fix missing ofnodeput() in mtkpctrlinit (git-fixes).
  • pinctrl: mediatek: paris: Fix 'argument' argument type for mtkpinconfget() (git-fixes).
  • pinctrl: mediatek: paris: Fix pingroup pin config state readback (git-fixes).
  • pinctrl: nomadik: Add missing ofnodeput() in nmkpinctrlprobe (git-fixes).
  • pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR() (git-fixes).
  • pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE() (git-fixes).
  • pinctrl: pinconf-generic: Print arguments for bias-pull-* (git-fixes).
  • pinctrl: samsung: drop pin banks references on error paths (git-fixes).
  • pinctrl/rockchip: Add missing ofnodeput() in rockchippinctrlprobe (git-fixes).
  • PM: hibernate: fix __setup handler error handling (git-fixes).
  • PM: suspend: fix return value of __setup handler (git-fixes).
  • powerpc/lib/sstep: Fix 'sthcx' instruction (bsc#1156395).
  • powerpc/mm: Fix verification of MMUFTRTYPE_44x (bsc#1156395).
  • powerpc/mm/numa: skip NUMANONODE onlining in parsenumaproperties() (bsc#1179639 ltc#189002 git-fixes).
  • powerpc/perf: Do not use perfhwcontext for trace IMC PMU (bsc#1156395).
  • powerpc/perf: Expose Performance Monitor Counter SPR's as part of extended regs (bsc#1198077 ltc#197299).
  • powerpc/perf: Include PMCs as part of per-cpu cpuhw_events struct (bsc#1198077 ltc#197299).
  • powerpc/pseries: Fix use after free in removephbdynamic() (bsc#1065729).
  • powerpc/sysdev: fix incorrect use to determine if list is empty (bsc#1065729).
  • powerpc/tm: Fix more userspace r13 corruption (bsc#1065729).
  • powerpc/xive: fix return value of __setup handler (bsc#1065729).
  • printk: Add panicinprogress helper (bsc#1197894).
  • printk: disable optimistic spin during panic (bsc#1197894).
  • pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (git-fixes).
  • regulator: qcomsmd: fix foreach_child.cocci warnings (git-fixes).
  • remoteproc: qcomwcnss: Add missing ofnodeput() in wcnssallocmemoryregion (git-fixes).
  • remoteproc: qcom: Fix missing ofnodeput in adspallocmemory_region (git-fixes).
  • Revert 'build initrd without systemd' (bsc#1197300).
  • Revert 'Input: clear BTN_RIGHT/MIDDLE on buttonpads' (bsc#1197243).
  • Revert 'module, async: asyncsynchronizefull() on module init iff async is used' (bsc#1197888).
  • Revert 'Revert 'build initrd without systemd' (bsc#1197300)'
  • Revert 'usb: dwc3: gadget: Use listreplaceinit() before traversing lists' (git-fixes).
  • s390/bpf: Perform r1 range checking before accessing jit->seen_reg (git-fixes).
  • s390/gmap: do not unconditionally call pteunmapunlock() in _gmapzap() (git-fixes).
  • s390/gmap: validate VMA in _gmapzap() (git-fixes).
  • s390/hypfs: include z/VM guests with access control group set (bsc#1195640 LTC#196352).
  • s390/kexec_file: fix error handling when applying relocations (git-fixes).
  • s390/kexec: fix memory leak of ipl report buffer (git-fixes).
  • s390/kexec: fix return code handling (git-fixes).
  • s390/mm: fix VMA and page table handling code in storage key handling functions (git-fixes).
  • s390/mm: validate VMA in PGSTE manipulation functions (git-fixes).
  • s390/module: fix loading modules with a lot of relocations (git-fixes).
  • s390/pcimmio: fully validate the VMA before calling followpte() (git-fixes).
  • s390/tape: fix timer initialization in tapestdassign() (bsc#1197677 LTC#197378).
  • scsi: lpfc: Copyright updates for 14.2.0.0 patches (bsc#1197675).
  • scsi: lpfc: Drop lpfcnohandler() (bsc#1197675).
  • scsi: lpfc: Fix broken SLI4 abort path (bsc#1197675).
  • scsi: lpfc: Fix locking for lpfcsliiocbq_lookup() (bsc#1197675).
  • scsi: lpfc: Fix queue failures when recovering from PCI parity error (bsc#1197675 bsc#1196478).
  • scsi: lpfc: Fix typos in comments (bsc#1197675).
  • scsi: lpfc: Fix unload hang after back to back PCI EEH faults (bsc#1197675 bsc#1196478).
  • scsi: lpfc: Improve PCI EEH Error and Recovery Handling (bsc#1197675 bsc#1196478).
  • scsi: lpfc: Kill lpfcbusreset_handler() (bsc#1197675).
  • scsi: lpfc: Reduce log messages seen after firmware download (bsc#1197675).
  • scsi: lpfc: Remove failing soft_wwn support (bsc#1197675).
  • scsi: lpfc: Remove NVMe support if kernel has NVME_FC disabled (bsc#1197675).
  • scsi: lpfc: Remove redundant flush_workqueue() call (bsc#1197675).
  • scsi: lpfc: SLI path split: Introduce lpfcprepwqe (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor Abort paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor base ELS paths and the FLOGI path (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor BSG paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor CT paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4 (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor FDISC paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor lpfc_iocbq (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor LS_ACC paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor LS_RJT paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor misc ELS paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor PLOGI/PRLI/ADISC/LOGO paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor SCSI paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor the RSCN/SCR/RDF/EDC/FARPR paths (bsc#1197675).
  • scsi: lpfc: SLI path split: Refactor VMID paths (bsc#1197675).
  • scsi: lpfc: Update lpfc version to 14.2.0.0 (bsc#1197675).
  • scsi: lpfc: Update lpfc version to 14.2.0.1 (bsc#1197675).
  • scsi: lpfc: Use fcblockrport() (bsc#1197675).
  • scsi: lpfc: Use kcalloc() (bsc#1197675).
  • scsi: lpfc: Use rport as argument for lpfcchktgt_mapped() (bsc#1197675).
  • scsi: lpfc: Use rport as argument for lpfcsendtaskmgmt() (bsc#1197675).
  • scsi: qla2xxx: Fix crash during module load unload test (bsc#1197661).
  • scsi: qla2xxx: Fix disk failure to rediscover (bsc#1197661).
  • scsi: qla2xxx: Fix hang due to session stuck (bsc#1197661).
  • scsi: qla2xxx: Fix incorrect reporting of task management failure (bsc#1197661).
  • scsi: qla2xxx: Fix laggy FC remote port session recovery (bsc#1197661).
  • scsi: qla2xxx: Fix loss of NVMe namespaces after driver reload test (bsc#1197661).
  • scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests (bsc#1197661).
  • scsi: qla2xxx: Fix N2N inconsistent PLOGI (bsc#1197661).
  • scsi: qla2xxx: Fix stuck session of PRLI reject (bsc#1197661).
  • scsi: qla2xxx: Fix typos in comments (bsc#1197661).
  • scsi: qla2xxx: Increase max limit of ql2xnvme_queues (bsc#1197661).
  • scsi: qla2xxx: Reduce false trigger to login (bsc#1197661).
  • scsi: qla2xxx: Stop using the SCSI pointer (bsc#1197661).
  • scsi: qla2xxx: Update version to 10.02.07.400-k (bsc#1197661).
  • scsi: qla2xxx: Use correct feature type field during RFF_ID processing (bsc#1197661).
  • scsi: qla2xxx: Use named initializers for portstatestr (bsc#1197661).
  • scsi: qla2xxx: Use named initializers for qdevstate (bsc#1197661).
  • serial: 8250_lpss: Balance reference count for PCI DMA device (git-fixes).
  • serial: 8250_mid: Balance reference count for PCI DMA device (git-fixes).
  • serial: 8250: Fix race condition in RTS-after-send handling (git-fixes).
  • serial: core: Fix the definition name in the comment of UPF_* flags (git-fixes).
  • soc: qcom: aoss: remove spurious IRQF_ONESHOT flags (git-fixes).
  • soc: qcom: rpmpd: Check for null return of devm_kcalloc (git-fixes).
  • soc: ti: wkupm3ipc: Fix IRQ check in wkupm3ipc_probe (git-fixes).
  • soundwire: intel: fix wrong register name in intelshimwake (git-fixes).
  • spi: pxa2xx-pci: Balance reference count for PCI DMA device (git-fixes).
  • spi: tegra114: Add missing IRQ check in tegraspiprobe (git-fixes).
  • staging: gdm724x: fix use after free in gdmlterx() (git-fixes).
  • staging:iio:adc:ad7280a: Fix handing of device address bit reversing (git-fixes).
  • tcp: add some entropy in _inethash_connect() (bsc#1180153).
  • tcp: change source port randomizarion at connect() time (bsc#1180153).
  • team: protect features update by RCU to avoid deadlock (git-fixes).
  • thermal: int340x: Check for NULL after calling kmemdup() (git-fixes).
  • thermal: int340x: Increase bitmap size (git-fixes).
  • udptunnel: Fix end of loop test in udptunnelnicunregister() (git-fixes).
  • Update config files (bsc#1195926 bsc#1175667). VIRTIOPCI=m -> VIRTIOPCI=y
  • usb: bdc: Adb shows offline after resuming from S2 (git-fixes).
  • usb: bdc: Fix a resource leak in the error handling path of 'bdc_probe()' (git-fixes).
  • usb: bdc: Fix unused assignment in bdc_probe() (git-fixes).
  • usb: bdc: remove duplicated error message (git-fixes).
  • usb: bdc: Use devmclkget_optional() (git-fixes).
  • usb: bdc: use devmplatformioremap_resource() to simplify code (git-fixes).
  • usb: dwc2: Fix Stalling a Non-Isochronous OUT EP (git-fixes).
  • usb: dwc2: gadget: Fix GOUTNAK flow for Slave mode (git-fixes).
  • usb: dwc2: gadget: Fix killallrequests race (git-fixes).
  • usb: dwc3: gadget: Use listreplaceinit() before traversing lists (git-fixes).
  • usb: dwc3: meson-g12a: Disable the regulator in the error handling path of the probe (git-fixes).
  • usb: dwc3: qcom: add IRQ check (git-fixes).
  • usb: gadget: bdc: use readlpolltimeout() to simplify code (git-fixes).
  • usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (git-fixes).
  • usb: gadget: rndis: prevent integer overflow in rndissetresponse() (git-fixes).
  • usb: host: xen-hcd: add missing unlock in error path (git-fixes).
  • usb: hub: Fix locking issues with address0_mutex (git-fixes).
  • usb: usbtmc: Fix bug in pipe direction for control transfers (git-fixes).
  • VFS: filename_create(): fix incorrect intent (bsc#1197534).
  • video: fbdev: atmellcdfb: fix an error code in atmellcdfb_probe() (git-fixes).
  • video: fbdev: controlfb: Fix COMPILE_TEST build (git-fixes).
  • video: fbdev: fbcvt.c: fix printing in fbcvtprint_name() (git-fixes).
  • video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes).
  • video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes).
  • video: fbdev: omapfb: Add missing ofnodeput() in dvicprobeof (git-fixes).
  • video: fbdev: smscufx: Fix null-ptr-deref in ufxusbprobe() (git-fixes).
  • VMCI: Fix the description of vmcicheckhost_caps() (git-fixes).
  • vsprintf: Fix %pK with kptr_restrict == 0 (bsc#1197889).
  • wireguard: queueing: use CFI-safe ptr_ring cleanup function (git-fixes).
  • wireguard: selftests: rename DEBUGPILIST to DEBUG_PLIST (git-fixes).
  • wireguard: socket: free skb in send6 when ipv6 is disabled (git-fixes).
  • wireguard: socket: ignore v6 endpoints when ipv6 is disabled (git-fixes).
  • x86/cpu: Add hardware-enforced cache coherency as a CPUID feature (bsc#1178134).
  • x86/mm/pat: Do not flush cache if hardware enforces cache coherency across encryption domnains (bsc#1178134).
  • x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT (bsc#1178134).
  • x86/speculation: Warn about Spectre v2 LFENCE mitigation (bsc#1178134).
  • xen/usb: do not use gnttabendforeignaccess() in xenhcdgnttab_done() (bsc#1196488, XSA-396).
  • xhci: fix garbage USBSTS being logged in some cases (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP3 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}

openSUSE:Leap 15.3 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "dlm-kmp-azure": "5.3.18-150300.38.53.1",
            "cluster-md-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-extra": "5.3.18-150300.38.53.1",
            "gfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-optional": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kselftests-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-livepatch-devel": "5.3.18-150300.38.53.1",
            "ocfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}

openSUSE:Leap 15.3 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "dlm-kmp-azure": "5.3.18-150300.38.53.1",
            "cluster-md-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-extra": "5.3.18-150300.38.53.1",
            "gfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-optional": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kselftests-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-livepatch-devel": "5.3.18-150300.38.53.1",
            "ocfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}

openSUSE:Leap 15.3 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-150300.38.53.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-devel-azure": "5.3.18-150300.38.53.1",
            "dlm-kmp-azure": "5.3.18-150300.38.53.1",
            "cluster-md-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-extra": "5.3.18-150300.38.53.1",
            "gfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-optional": "5.3.18-150300.38.53.1",
            "kernel-azure-devel": "5.3.18-150300.38.53.1",
            "kernel-azure": "5.3.18-150300.38.53.1",
            "kselftests-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-syms-azure": "5.3.18-150300.38.53.1",
            "kernel-azure-livepatch-devel": "5.3.18-150300.38.53.1",
            "ocfs2-kmp-azure": "5.3.18-150300.38.53.1",
            "kernel-source-azure": "5.3.18-150300.38.53.1"
        }
    ]
}