SUSE-SU-2022:2629-1

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657).
• CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages (bsc#1199487).
• CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619).
• CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482).
• CVE-2022-20141: Fixed a possible use after free due to improper locking in ipcheckmc_rcu() (bsc#1200604).
• CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013).
• CVE-2022-20154: Fixed a use after free due to a race condition in locksocknested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599).
• CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bsc#1177282)
• CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251).
• CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762).
• CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via Spectre like attacks (bsc#1199650).
• CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via Spectre like attacks (bsc#1199650).
• CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via Spectre like attacks (bsc#1199650).
• CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via Spectre like attacks (bsc#1199650).
• CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via Spectre like attacks (bsc#1199650).
• CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050).
• CVE-2022-1966: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015)
• CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143)
• CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144)
• CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266)
• CVE-2022-1729: Fixed a sysperfevent_open() race condition against self (bsc#1199507).
• CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577)
• CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426)
• CVE-2022-1836: Fixed a bug in the floppy submodule disabling FDRAWCMD by default. (bsc#1198866)
• CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063).
• CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605)
• CVE-2021-39711: In bpfprogtestrunskb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1197219).
• CVE-2022-30594: Fixed restriction bypass on setting the PTSUSPENDSECCOMP flag (bnc#1199505).
• CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426).

The following non-security bugs were fixed:

• ACPI: property: Release subnode properties with data nodes (git-fixes).
• arm64: Add missing ISB after invalidating TLB in _primaryswitch (git-fixes)
• arm64: armv8deprecated: Fix undefhook mask for thumb setend (git-fixes)
• arm64: avoid fixmap race condition when create pud mapping (git-fixes)
• arm64: avoid -Woverride-init warning (git-fixes)
• arm64: berlin: Select DWAPBTIMER_OF (git-fixes) Update arm64 default config too.
• arm64: clearpage() shouldn't use DC ZVA when DCZIDEL0.DZP == 1 (git-fixes).
• arm64: cpufeature: Fix the type of no FP/SIMD capability (git-fixes)
• arm64: cpufeature: Set the FP/SIMD compat HWCAP bits properly (git-fixes)
• arm64: csum: Fix handling of bad packets (git-fixes)
• arm64: Extend workaround for erratum 1024718 to all versions of (git-fixes)
• arm64: fix inline asm in loadunalignedzeropad() (git-fixes)
• arm64: fix the flushicacherange arguments in machine_kexec (git-fixes)
• arm64: futex: Restore oldval initialization to work around buggy (git-fixes)
• arm64: hibernate: check pgd table allocation (git-fixes)
• arm64: hugetlb: avoid potential NULL dereference (git-fixes)
• arm64: hw_breakpoint: Do not invoke overflow handler on uaccess (git-fixes)
• arm64: kbuild: remove compressed images on 'make ARCH=arm64 (git-fixes)
• arm64: kdump: update ppos when reading elfcorehdr (git-fixes)
• arm64: kgdb: Fix single-step exception handling oops (git-fixes)
• arm64: module: remove (NOLOAD) from linker script (git-fixes)
• arm64 module: set plt* section addresses to 0x0 (git-fixes)
• arm64: perf: Report the PC value in REGSABI32 mode (git-fixes)
• arm64: ptrace: nofpsimd: Fail FP/SIMD regset operations (git-fixes)
• arm64: ptrace: Override SPSR.SS when single-stepping is enabled (git-fixes)
• arm64: smp: fix crashsmpsend_stop() behaviour (git-fixes)
• arm64: smp: fix smpsendstop() behaviour (git-fixes)
• arm64: uaccess: Ensure PAN is re-enabled after unhandled uaccess (git-fixes)
• arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing (git-fixes)
• audit: fix a race condition with the auditd tracking code (bsc#1197170).
• block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes).
• bnxten: Remove the setting of devport (git-fixes).
• bonding: fix bondneighinit() (git-fixes).
• btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (bsc#1199399).
• btrfs: tree-checker: fix incorrect printk format (bsc#1200249).
• cgroup/cpuset: Remove cpusallowed/memsallowed setup in cpusetinitsmp() (bsc#1199839).
• cputime, cpuacct: Include guest time in user time in (git-fixes)
• crypto: ixp4xx - dma_unmap the correct address (git-fixes).
• crypto: qat - do not cast parameter in bit operations (git-fixes).
• crypto: rsa-pkcs1pad - fix buffer overread in pkcs1padverifycomplete() (bsc#1197601).
• crypto: virtio - deal with unsupported input sizes (git-fixes).
• crypto: virtio: Fix dest length calculation in _virtiocryptoskcipherdo_req() (git-fixes).
• dm crypt: Avoid percpucounter spinlock contention in cryptpage_alloc() (git-fixes).
• drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes).
• drbd: fix duplicate array initializer (git-fixes).
• drbd: Fix five use after free bugs in getinitialstate (git-fixes).
• drbd: remove assignpsizes_qlim (git-fixes).
• drbd: use bdevalignmentoffset instead of queuealignmentoffset (git-fixes).
• drbd: use bdev based limit helpers in drbdsendsizes (git-fixes).
• exec: Force single empty string when argv is empty (bsc#1200571).
• ext4: fix bugon ext4mbuseinode_pa (bsc#1200810).
• ext4: fix bugon in _estreesearch (bsc#1200809).
• ext4: fix bugon in ext4writepages (bsc#1200872).
• ext4: fix overhead calculation to account for the reserved gdt blocks (bsc#1200869).
• ext4: fix race condition between ext4write and ext4convertinlinedata (bsc#1200807).
• ext4: fix symlink file size not match to file content (bsc#1200868).
• ext4: fix use-after-free in ext4renamedir_prepare (bsc#1200871).
• ext4: force overhead calculation if the soverheadcluster makes no sense (bsc#1200870).
• ext4: limit length to bitmapmaxbytes - blocksize in punchhole (bsc#1200806).
• ext4: make variable 'count' signed (bsc#1200820).
• fs-writeback: writebacksbinodes Recalculate 'wrote' according skipped pages (bsc#1200873).
• i40e: always propagate error value in i40esetvsi_promisc() (git-fixes).
• i40e: Fix MAC address setting for a VF via Host/VM (git-fixes).
• i40e: fix return of uninitialized aqret in i40esetvsipromisc (git-fixes).
• i40e: Fix the conditional for i40evcvalidatevqsbitmaps (git-fixes).
• i40e: Fix virtchnlqueueselect bitmap validation (git-fixes).
• i40e: Refactoring VF MAC filters counting to make more reliable (git-fixes).
• i40e: Remove scheduling while atomic possibility (git-fixes).
• i915vma: Rename vmalookup to i915vmalookup (git-fixes).
• iavf: Fix incorrect adapter get in iavf_resume (git-fixes).
• ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925).
• init: Initialize noopbackingdev_info early (bsc#1200822).
• inotify: show inotify mask flags in proc fdinfo (bsc#1200600).
• Input: aiptek - properly check endpoint type (git-fixes).
• Input: appletouch - initialize work before device registration (git-fixes).
• Input: bcm5974 - set missing URBNOTRANSFERDMAMAP urb flag (git-fixes).
• Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes).
• Input: elani2c - move regulator[en|dis]able() out of elan[en|dis]ablepower() (git-fixes).
• Input: elantench - fix misreporting trackpoint coordinates (git-fixes).
• Input: omap4-keypad - fix pmruntimeget_sync() error checking (git-fixes).
• Input: spaceball - fix parsing of movement data packets (git-fixes).
• Input: tiam335xtsc - fix STEPCONFIG setup for Z2 (git-fixes).
• Input: tiam335xtsc - set ADCREFM for X configuration (git-fixes).
• Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes).
• iomap: iomapwritefailed fix (bsc#1200829).
• KVM: arm64: Fix definition of PAGEHYPDEVICE (git-fixes)
• kvm: fix wrong exception emulation in check_rdtsc (git-fixes).
• kvm: i8254: remove redundant assignment to pointer s (git-fixes).
• KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (git-fixes).
• KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes).
• KVM: PPC: Propagate errors to the guest when failed instead of ignoring (bsc#1061840 git-fixes).
• KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes).
• KVM: x86: Allocate new rmap and large page tracking when moving memslot (git-fixes).
• KVM: x86: always stop emulation on page fault (git-fixes).
• KVM: x86: clear stale x86emulatectxt->intercept value (git-fixes).
• KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes).
• kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes).
• KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes).
• KVM: x86: do not modify masked bits of shared MSRs (git-fixes).
• KVM: x86/emulator: Defer not-present segment check in _loadsegment_descriptor() (git-fixes).
• KVM: x86: Fix emulation in writing cr8 (git-fixes).
• KVM: x86: Fix off-by-one error in kvmvcpuioctlx86setup_mce (git-fixes).
• KVM: x86: Fix potential putfpu() w/o loadfpu() on MPX platform (git-fixes).
• KVM: x86: Fix x86decodeinsn() return when fetching insn bytes fails (git-fixes).
• KVM: x86: Free wbinvddirtymask if vCPU creation fails (git-fixes).
• kvm: x86: Improve emulation of CPUID leaves 0BH and 1FH (git-fixes).
• KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes).
• KVM: x86: Manually calculate reserved bits when loading PDPTRS (git-fixes).
• KVM: x86: Manually flush collapsible SPTEs only when toggling flags (git-fixes).
• KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes).
• KVM: x86/mmu: Treat invalid shadow pages as obsolete (git-fixes).
• KVM: x86: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks (git-fixes).
• KVM: x86: Remove spurious clearing of async #PF MSR (git-fixes).
• KVM: x86: Remove spurious kvmmmuunload() from vcpu destruction path (git-fixes).
• KVM: x86: remove stale comment from struct x86emulatectxt (git-fixes).
• KVM: x86: set ctxt->haveexception in x86decode_insn() (git-fixes).
• KVM: x86: skip populating logical dest map if apic is not sw enabled (git-fixes).
• KVM: x86: Trace the original requested CPUID function in kvm_cpuid() (git-fixes).
• KVM: x86: Update vCPU's hvclock before back to guest when tscoffset is adjusted (git-fixes).
• lpfc: drop driver update 14.2.0.x The amount of backport changes necessary for due to the refactoring is introducing to much code churn and is likely to introduce regressions. This ends the backport effort to keep the lpfc in sync with mainline.
• lpfc: Set default protocol support to FCP only (bsc#1194124 bsc#1198899).
• md: bcache: check the return value of kzalloc() in detacheddevdo_request() (git-fixes).
• md: fix an incorrect NULL check in doessbneed_changing (git-fixes).
• md: fix an incorrect NULL check in mdreloadsb (git-fixes).
• md/raid0: Ignore RAID0 layout if the second zone has only one device (git-fixes).
• media: cpia2: fix control-message timeouts (git-fixes).
• media: cx23885: Fix sndcardfree call on null card pointer (git-fixes).
• media: dib0700: fix undefined behavior in tuner shutdown (git-fixes).
• media: dmxdev: fix UAF when dvbregisterdevice() fails (git-fixes).
• media: em28xx: fix control-message timeouts.
• media: flexcop-usb: fix control-message timeouts (git-fixes).
• media: mceusb: fix control-message timeouts (git-fixes).
• media: mtk-vpu: Fix a resource leak in the error handling path of 'mtkvpuprobe()' (git-fixes).
• media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes).
• media: pvrusb2: fix control-message timeouts (git-fixes).
• media: redrat3: fix control-message timeouts (git-fixes).
• media: s2255: fix control-message timeouts (git-fixes).
• media: stk1160: fix control-message timeouts (git-fixes).
• media: vim2m: Remove surplus name initialization (git-fixes).
• mm: add vmalookup(), update findvma_intersection() comments (git-fixes).
• mm, pagealloc: fix buildzonerefs_node() (git-fixes).
• netfilter: conntrack: connection timeout after re-register (bsc#1199035).
• netfilter: conntrack: move synack init code to helper (bsc#1199035).
• netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035).
• netfilter: nfconntracktcp: preserve liberal flag in tcp options (bsc#1199035).
• netfilter: nfconntracktcp: re-init for syn packets only (bsc#1199035).
• netfilter: nf_tables: disallow non-stateful expression in sets earlier (bsc#1200015).
• net/mlx5: Avoid double free of root ns in the error flow path (git-fixes).
• net/mlx5e: Replace reciprocal_scale in TX select queue function (git-fixes).
• net/mlx5e: Switch to Toeplitz RSS hash by default (git-fixes).
• net/mlx5: Fix auto group size calculation (git-fixes).
• net: qed: Disable aRFS for NPAR and 100G (git-fixes).
• net: qede: Disable aRFS for NPAR and 100G (git-fixes).
• net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (git-fixes).
• net: stmmac: update rx tail pointer register to fix rx dma hang issue (git-fixes).
• NFSD: Fix possible sleep during nfsd4releaselockowner() (git-fixes).
• NFS: Further fixes to the writeback error handling (git-fixes).
• NFS: limit use of ACCESS cache for negative responses (bsc#1196570).
• NFSv4: Do not invalidate inode attributes on delegation return (git-fixes).
• PCI/ACPI: Allow D3 only if Root Port can signal and wake from D3 (git-fixes).
• PCI / ACPI: Mark expected switch fall-through (git-fixes).
• PCI: hv: Do not set PCICOMMANDMEMORY to reduce VM boot time (bsc#1199314).
• PCI: Tidy comments (git-fixes).
• platform/chrome: crosecproto: Send command again when timeout occurs (git-fixes).
• powerpc/64s: Add CPUFTRSPOWER9DD22 to CPUFTRSALWAYS mask (bsc#1061840 git-fixes).
• powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753).
• powerpc/idle: Fix return value of __setup() handler (bsc#1065729).
• powerpc/numa: Prefer node id queried from vphn (bsc#1199237 bsc#1200173 ltc#198329).
• powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729).
• powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).
• powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).
• powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes).
• powerpc: Remove Power8 DD1 from cputable (bsc#1055117 ltc#159753).
• powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477).
• powerpc/xive: Add some error handling code to 'xivespaprinit()' (git-fixes).
• powerpc/xive: Fix refcount leak in xivespaprinit (git-fixes).
• qed: Enable automatic recovery on error condition (bsc#1196964).
• raid5: introduce MD_BROKEN (git-fixes).
• s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes).
• s390: fix strrchr() implementation (git-fixes).
• s390/ftrace: fix ftraceupdateftrace_func implementation (git-fixes).
• s390/gmap: do not unconditionally call pteunmapunlock() in _gmapzap() (git-fixes).
• s390/gmap: validate VMA in _gmapzap() (git-fixes).
• s390/mm: fix VMA and page table handling code in storage key handling functions (git-fixes).
• s390/mm: validate VMA in PGSTE manipulation functions (git-fixes).
• sched/core: Add _sched tag for ioschedule() (git-fixes)
• sched/core: Fix comment regarding nriowaitcpu() and (git-fixes)
• sched/debug: Remove mpolget/put and tasklock/unlock from (git-fixes)
• scsi: bnx2fc: Make bnx2fcrecvframe() mp safe (git-fixes).
• scsi: dc395x: Fix a missing check on list iterator (git-fixes).
• scsi: fnic: Fix a tracing statement (git-fixes).
• scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631).
• scsi: hisisas: Change permission of parameter protmask (git-fixes).
• scsi: pm8001: Fix abort all task initialization (git-fixes).
• scsi: pm8001: Fix command initialization in pm8001chipssptmreq() (git-fixes).
• scsi: pm8001: Fix command initialization in pm80XXsendread_log() (git-fixes).
• scsi: pm8001: Fix le32 values handling in pm80xxchipsata_req() (git-fixes).
• scsi: pm8001: Fix le32 values handling in pm80xxchipsspioreq() (git-fixes).
• scsi: pm8001: Fix le32 values handling in pm80xxsetsasprotocoltimer_config() (git-fixes).
• scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes).
• scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes).
• scsi: pm8001: Fix payload initialization in pm80xxencryptupdate() (git-fixes).
• scsi: pm8001: Fix payload initialization in pm80xxsetthermal_config() (git-fixes).
• scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200045).
• scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200045).
• scsi: qla2xxx: Remove free_sg command flag (bsc#1200045).
• scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200045).
• scsi: sr: Do not leak information in ioctl (git-fixes).
• scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes).
• scsi: ufs: qcom: Fix ufsqcomresume() (git-fixes).
• scsi: virtio-scsi: Eliminate anonymous moduleinit and moduleexit (git-fixes).
• scsi: zorro7xx: Fix a resource leak in zorro7xxremoveone() (git-fixes).
• smp: Fix offline cpu check in flushsmpcallfunctionqueue() (git-fixes).
• SUNRPC: Ensure gss-proxy connects on setup (git-fixes).
• SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes).
• SUNRPC: Fix the calculation of xdr->end in xdrgetnextencodebuffer() (git-fixes).
• target: remove an incorrect unmap zeroes data deduction (git-fixes).
• timekeeping: Really make sure walltomonotonic isn't (git-fixes)
• tpm: ibmvtpm: Correct the return value in tpmibmvtpmprobe() (bsc#1065729).
• tracing: Fix return value of tracepidwrite() (git-fixes).
• usb: cdc-wdm: fix reading stuck on device close (git-fixes).
• usb: dwc3: core: Only handle soft-reset in DCTL (git-fixes).
• usb: dwc3: gadget: Do not send unintended link state change (git-fixes).
• usb: hub: Fix locking issues with address0_mutex (git-fixes).
• usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes).
• usb: musb: Fix missing ofnodeput() in omap2430_probe (git-fixes).
• usb: quirks: add a Realtek card reader (git-fixes).
• usb: quirks: add STRING quirk for VCOM device (git-fixes).
• usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes).
• usb: serial: option: add Fibocom L610 modem (git-fixes).
• usb: serial: option: add Fibocom MA510 modem (git-fixes).
• USB: serial: option: add Quectel BG95 modem (git-fixes).
• usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes).
• usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes).
• usb: serial: pl2303: add device id for HP LM930 Display (git-fixes).
• usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes).
• usb: serial: whiteheat: fix heap overflow in WHITEHEATGETDTR_RTS (git-fixes).
• USB: storage: karma: fix riokarmainit return (git-fixes).
• usb: usbip: add missing device lock on tweak configuration cmd (git-fixes).
• usb: usbip: fix a refcount leak in stub_probe() (git-fixes).
• video: fbdev: clcdfb: Fix refcount leak in clcdfbofvram_setup (bsc#1129770)
• vxlan: fix memleak of fdb (git-fixes).
• writeback: Avoid skipping inode writeback (bsc#1200813).
• writeback: Fix inode->iiolist not be protected by inode->i_lock error (bsc#1200821).
• xhci: stop polling roothubs after shutdown (git-fixes).