SUSE-SU-2023:0634-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:0634-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2023:0634-1
Related
Published
2023-03-07T10:35:44Z
Modified
2023-03-07T10:35:44Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2021-4203: Fixed use-after-free read flaw that was found in sockgetsockopt() in net/core/sock.c due to SOPEERCRED and SO_PEERGROUPS race with listen() (bsc#1194535).
  • CVE-2017-5754: Fixed speculative side channel attacks on various CPU platforms (bsc#1068032).
  • CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).
  • CVE-2023-0045: Fixed missing Flush IBP in ibprctlset (bsc#1207773).
  • CVE-2022-4662: Fixed incorrect access control in the USB core subsystem that could lead a local user to crash the system (bsc#1206664).
  • CVE-2023-0590: Fixed race condition in qdisc_graft() (bsc#1207795).
  • CVE-2022-2991: Fixed an heap-based overflow in the lightnvm implemenation (bsc#1201420).
  • CVE-2023-0266: Fixed a use-after-free vulnerability inside the ALSA PCM package. SNDRVCTLIOCTLELEM{READ|WRITE}32 was missing locks that could have been used in a use-after-free that could have resulted in a priviledge escalation to gain ring0 access from the system user (bsc#1207134).
  • CVE-2022-47929: Fixed NULL pointer dereference bug in the traffic control subsystem (bsc#1207237).

The following non-security bugs were fixed:

  • add 00f3ca2c2d66 ('mm: memcontrol: per-lruvec stats infrastructure')
  • add 0b3d6e6f2dd0 mm: writeback: use exact memcg dirty counts
  • add 168e06f7937d kernel/hung_task.c: force console verbose before panic
  • add 1f4aace60b0e ('fs/seqfile.c: simplify seqfile iteration code and interface')
  • add 304ae42739b1 kernel/hung_task.c: break RCU locks based on jiffies
  • add 401c636a0eeb kernel/hung_task.c: show all hung tasks before panic
  • add Tegra repository to git_sort.
  • add a1c6ca3c6de7 kernel: hung_task.c: disable on suspend
  • add c3cc39118c36 mm: memcontrol: fix NR_WRITEBACK leak in memcg and system stats
  • add c892fd82cc06 mm: memcg: add _GFPNOWARN in _memcgschedulekmemcache_create()
  • add e27be240df53 mm: memcg: make sure memory.events is uptodate when waking pollers
  • add support for enabling livepatching related packages on -RT (jsc#PED-1706)
  • add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149)
  • amiflop: clean up on errors during setup (git-fixes).
  • audit: ensure userspace is penalized the same as the kernel when under pressure (bsc#1204514).
  • audit: improve robustness of the audit queue handling (bsc#1204514).
  • bcache: fix super block seq numbers comparision in registercacheset() (git-fixes).
  • blk-cgroup: Fix memleak on error path (git-fixes).
  • blk-cgroup: Pre-allocate tree node on blkgconfprep (git-fixes).
  • blk-cgroup: fix missing put device in error path from blkgconfpref() (git-fixes).
  • blk-mq: fix possible memleak when register 'hctx' failed (git-fixes).
  • blk-mq: insert request not through ->queue_rq into sw/scheduler queue (git-fixes).
  • blk-mq: move cancel of requeuework into blkmq_release (git-fixes).
  • blktrace: Fix output non-blktrace event when blk_classic option enabled (git-fixes).
  • blktrace: break out of blktrace setup on concurrent calls (git-fixes).
  • blktrace: ensure our debugfs dir exists (git-fixes).
  • blktrace: fix endianness for blklogremap() (git-fixes).
  • blktrace: fix endianness in getpduint() (git-fixes).
  • blktrace: use errno instead of bi_status (git-fixes).
  • block, bfq: fix overwrite of bfqgroup pointer in bfqfindsetgroup() (bsc#1175995,jsc#SLE-15608).
  • block, bfq: fix overwrite of bfqgroup pointer in bfqfindsetgroup() (git-fixes).
  • block, bfq: increase idling for weight-raised queues (git-fixes).
  • block, bfq: protect 'bfqd->queued' by 'bfqd->lock' (bsc#1207102).
  • block, bfq: protect 'bfqd->queued' by 'bfqd->lock' (git-fixes).
  • block/bio-integrity: do not free 'buf' if biointegrityadd_page() failed (git-fixes).
  • block/bio-integrity: fix a memory leak bug (git-fixes).
  • block/swim: Check drive type (git-fixes).
  • block/swim: Do not log an error message for an invalid ioctl (git-fixes).
  • block/swim: Fix IO error at end of medium (git-fixes).
  • block/swim: Rename macros to avoid inconsistent inverted logic (git-fixes).
  • block/swim: Select appropriate drive on device open (git-fixes).
  • block: Fix use-after-free issue accessing struct io_cq (git-fixes).
  • block: add a lower-level bioaddpage interface (git-fixes).
  • block: bio-integrity: Copy flags when biointegritypayload is cloned (bsc#1208541).
  • block: fix memleak when _blkrqmapuser_iov() is failed (git-fixes).
  • block: sed-opal: fix IOCOPALENABLEDISABLEMBR (git-fixes).
  • brd: check and limit max_part par (git-fixes).
  • compat_ioctl: block: handle BLKGETZONESZ/BLKGETNRZONES (git-fixes).
  • constraints: increase disk space for all architectures References: bsc#1203693 aarch64 is already suffering. SLE15-SP5 x86_64 stats show that it is very close to the limit.
  • cpu/hotplug: Fix 'SMT disabled by BIOS' detection for KVM (git-fixes).
  • cryptoloop: add a deprecation warning (git-fixes).
  • d6810d730022 ('memcg, THP, swap: make memcgroupswapout() support THP')
  • dm bio record: save/restore biendio and bi_integrity (git-fixes).
  • dm btree: add a defensive bounds check to insert_at() (git-fixes).
  • dm cache: Fix ABBA deadlock between shrinkslab and dmcachemetadataabort (git-fixes).
  • dm cache: Fix UAF in destroy() (git-fixes).
  • dm cache: set needs_check flag after aborting metadata (git-fixes).
  • dm crypt: use u64 instead of sectort to store ivoffset (git-fixes).
  • dm flakey: Properly corrupt multi-page bios (git-fixes).
  • dm ioctl: fix misbehavior if list_versions races with module loading (git-fixes).
  • dm ioctl: prevent potential spectre v1 gadget (git-fixes).
  • dm kcopyd: Fix bug causing workqueue stalls (git-fixes).
  • dm raid: avoid bitmap with raid4/5/6 journal device (git-fixes).
  • dm space map common: add bounds check to smlllookup_bitmap() (git-fixes).
  • dm space maps: do not reset space map allocation cursor when committing (git-fixes).
  • dm table: Remove BUGON(ininterrupt()) (git-fixes).
  • dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata (git-fixes).
  • dm thin: Fix UAF in runtimersoftirq() (git-fixes).
  • dm thin: Use last transaction's pmd->root when commit failed (git-fixes).
  • dm thin: add sanity checks to thin-pool and external snapshot creation (git-fixes).
  • dm thin: resume even if in FAIL mode (git-fixes).
  • dm verity: skip verity work if I/O error when system is shutting down (git-fixes).
  • dm verity: use message limit for data block corruption message (git-fixes).
  • dm zoned: return NULL if dmzgetzoneforreclaim() fails to find a zone (git-fixes).
  • dm: Use kzalloc for all structs with embedded biosets/mempools (git-fixes).
  • do not dump the threads that had been already exiting when zapped (git-fixes).
  • drbd: Change drbdrequestdetach_interruptible's return type to int (git-fixes).
  • drbd: destroy workqueue when drbd device was freed (git-fixes).
  • drbd: do not block when adjusting 'disk-options' while IO is frozen (git-fixes).
  • drbd: dynamically allocate shash descriptor (git-fixes).
  • drbd: fix potential silent data corruption (git-fixes).
  • drbd: fix printsterr()'s prototype to match the definition (git-fixes).
  • drbd: ignore 'all zero' peer volume sizes in handshake (git-fixes).
  • drbd: reject attach of unsuitable uuids even if connected (git-fixes).
  • drbd: remove usage of list iterator variable after loop (git-fixes).
  • drbd: use after free in drbdcreatedevice() (git-fixes).
  • drivers/block/zram/zramdrv.c: fix bug storing backingdev (git-fixes).
  • drivers:md:fix a potential use-after-free bug (git-fixes).
  • ext4: Detect already used quota file early (bsc#1206873).
  • ext4: Fixup pages without buffers (bsc#1205495).
  • ext4: add EXT4INODEHASXATTRSPACE macro in xattr.h (bsc#1206878).
  • ext4: add reserved GDT blocks check (bsc#1202712).
  • ext4: avoid crash when inline data creation follows DIO write (bsc#1206883).
  • ext4: avoid resizing to a partial cluster size (bsc#1206880).
  • ext4: clear mmp sequence number when remounting read-only (bsc#1207093).
  • ext4: continue to expand file system when the target size does not reach (bsc#1206882).
  • ext4: correct maxinlinexattrvaluesize computing (bsc#1206878).
  • ext4: correct the misjudgment in ext4igetextra_inode (bsc#1206878).
  • ext4: do not BUG if someone dirty pages without asking ext4 first (bsc#1207097).
  • ext4: fix a data race at inode->i_disksize (bsc#1206855).
  • ext4: fix argument checking in EXT4IOCMOVE_EXT (bsc#1207092).
  • ext4: fix extent status tree race in writeback error recovery path (bsc#1206877).
  • ext4: fix null-ptr-deref in ext4writeinfo (bsc#1206884).
  • ext4: fix race when reusing xattr blocks (bsc#1198971).
  • ext4: fix undefined behavior in bit shift for ext4checkflag_values (bsc#1206890).
  • ext4: fix use-after-free in ext4extshift_extents (bsc#1206888).
  • ext4: fix use-after-free in ext4xattrset_entry (bsc#1206878).
  • ext4: fix warning in 'ext4darelease_space' (bsc#1206887).
  • ext4: make ext4lazyinitthread freezable (bsc#1206885).
  • ext4: prohibit fstrim in norecovery mode (bsc#1207094).
  • ext4: recover csum seed of tmp_inode after migrating to extents (bsc#1202713).
  • ext4: unindent codeblock in ext4xattrblock_set() (bsc#1198971).
  • ext4: update soverheadclusters in the superblock during an on-line resize (bsc#1206876).
  • ext4: use matching invalidatepage in ext4_writepage (bsc#1206858).
  • floppy: Add max size check for user space request (git-fixes).
  • ftrace: Enable trampoline when rec count returns back to one (git-fixes).
  • ftrace: Fix NULL pointer dereference in freeftracefunc_mapper() (git-fixes).
  • ftrace: Fix updating FTRACEFLTRAMP (git-fixes).
  • ftrace: fpid_next() should increase position index (git-fixes).
  • git_sort: add usb-linus branch for gregkh/usb
  • gtp: set NLMFMULTI flag in gtpgenldump_pdp() (git-fixes).
  • hid: betop: check shape of output reports (git-fixes, bsc#1207186).
  • hid: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes, bsc#1207186).
  • hid: check empty reportlist in hidvalidate_values() (git-fixes, bsc#1206784).
  • iforce: restore old iforcedumppacket (git-fixes).
  • input: convert autorepeat timer to use timer_setup() (git-fixes).
  • input: do not use WARN() in inputallocabsinfo() (git-fixes).
  • input: i8042 - Add quirk for Fujitsu Lifebook T725 (git-fixes).
  • input: iforce - reformat the packet dump output (git-fixes).
  • input: iforce - wake up after clearing IFORCEXMITRUNNING flag (git-fixes). Heavily modified, as prerequisites for taking it as is would utterly ruin kABI
  • input: replace hard coded string with func in pr_err() (git-fixes).
  • input: switch to using sizeof(*type) when allocating memory (git-fixes).
  • input: use seqputc() in inputseqprintbitmap() (git-fixes).
  • input: use seqputs() in inputdevicesseqshow() (git-fixes).
  • ipmi: Fix UAF when uninstall ipmisi and ipmimsghandler module (git-fixes).
  • ipmi: Move remove_work to dedicated workqueue (git-fixes).
  • ipmi: fix memleak when unload ipmi driver (git-fixes).
  • ipmi: fix use after free in ipmidestroy_user() (git-fixes).
  • isofs: reject hardware sector size > 2048 bytes (bsc#1207103).
  • jbd2: use the correct print format (git-fixes).
  • kABI: cpu/hotplug: reexport cpusmtcontrol (kabi).
  • kbuild: clear LDFLAGS in the top Makefile (bsc#1203200).
  • kernel/sys.c: avoid copying possible padding bytes in copytouser (git-fixes).
  • kprobes, x86/alternatives: Use textmutex to protect smpalt_modules (git-fixes).
  • kprobes, x86/ptrace.h: Make regsgetkernelstacknth() not fault on bad stack (git-fixes).
  • loop: Add LOOPSETDIRECT_IO to compat ioctl (git-fixes).
  • loop: use sysfs_emit() in the sysfs xxx show() (git-fixes).
  • m68k/mac: Do not remap SWIM MMIO region (git-fixes).
  • makefile: link with -z noexecstack --no-warn-rwx-segments (bsc#1203200).
  • mbcache: add functions to delete entry if unused (bsc#1198971).
  • mbcache: do not reclaim used entries (bsc#1198971).
  • md/raid1: stop mdx_raid1 thread when raid1 array run failed (git-fixes).
  • md/raid5: Wait for MDSBCHANGE_PENDING in raid5d (git-fixes).
  • md: fix a crash in mempool_free (git-fixes).
  • md: protect mdunregisterthread from reentrancy (git-fixes).
  • memcg: remove memcgcgroup::id from IDR on memcgroupcssalloc() failure (bsc#1208108).
  • mm/filemap.c: clear page error before actual read (bsc#1206635).
  • module: Do not wait for GOING modules (bsc#1196058, bsc#1186449, bsc#1204356, bsc#1204662).
  • nbd: Add the nbd NBDDISCONNECTON_CLOSE config flag (git-fixes).
  • nbd: Fix NULL pointer in flush_workqueue (git-fixes).
  • nbd: Fix hung when signal interrupts nbdstartdevice_ioctl() (git-fixes).
  • nbd: add a flushworkqueue in nbdstart_device (git-fixes).
  • nbd: add missing config put (git-fixes).
  • nbd: call genlunregisterfamily() first in nbd_cleanup() (git-fixes).
  • nbd: do not requeue the same request twice (git-fixes).
  • nbd: fix a blockdevice refcount leak in nbdrelease (git-fixes).
  • nbd: fix crash when the blksize is zero (git-fixes).
  • nbd: fix io hung while disconnecting device (git-fixes).
  • nbd: fix max number of supported devs (git-fixes).
  • nbd: fix possible sysfs duplicate warning (git-fixes).
  • nbd: fix race between nbdallocconfig() and module removal (git-fixes).
  • nbd: fix shutdown and recv work deadlock v2 (git-fixes).
  • nbd: handle racing with error'ed out commands (git-fixes).
  • nbd: handle unexpected replies better (git-fixes).
  • nbd: make the config put is called before the notifying the waiter (git-fixes).
  • nbd: verify socket is supported during setup (git-fixes).
  • nbd:fix memory leak in nbdgetsocket() (git-fixes).
  • net/ethernet/freescale: rework quiesce/activate for ucc_geth (git-fixes).
  • net/mlx5e: Set of completion request bit should not clear other adjacent bits (git-fixes).
  • net/usb: kalmia: Do not pass actlen in usbbulk_msg error path (git-fixes).
  • net: USB: Fix wrong-direction WARNING in plusb.c (git-fixes).
  • net: allwinner: Fix use correct return type for ndostartxmit() (git-fixes).
  • net: bcmgenet: suppress warnings on failed Rx SKB allocations (git-fixes).
  • net: bmac: Fix read of MAC address from ROM (git-fixes).
  • net: dsa: mv88e6xxx: Allow dsa and cpu ports in multiple vlans (git-fixes).
  • net: mana: Fix IRQ name - add PCI and queue number (bsc#1207875).
  • net: qed*: Reduce RX and TX default ring count when running inside kdump kernel (git-fixes).
  • net: stmmac: Fix sub-second increment (git-fixes).
  • net: systemport: suppress warnings on failed Rx SKB allocations (git-fixes).
  • net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes).
  • net: usb: cdc_mbim: avoid altsetting toggling for Telit LN920 (git-fixes).
  • net: usb: lan78xx: do not modify phy_device state concurrently (git-fixes).
  • net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).
  • net: usb: qmi_wwan: add Quectel RM520N (git-fixes).
  • net: usb: sr9700: Handle negative len (git-fixes).
  • nullblk: Handle nulladd_dev() failures properly (git-fixes).
  • null_blk: fix spurious IO errors after failed past-wp access (git-fixes).
  • panic: unset paniconwarn inside panic() (git-fixes).
  • parisc: Fix HP SDC hpa address output (git-fixes).
  • parisc: Fix serio address output (git-fixes).
  • pci/aspm: Correct LTRL1.2THRESHOLD computation (git-fixes).
  • pci/aspm: Declare threshold_ns as u32, not u64 (git-fixes).
  • pci/sysfs: Fix double free in error path (git-fixes).
  • pci: Check for alloc failure in pcirequestirq() (git-fixes).
  • pci: Fix pcideviceis_present() for VFs by checking PF (git-fixes).
  • pci: Fix usedbuses calculation in pciscanchildbus_extend() (git-fixes).
  • pci: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes).
  • prlimit: do_prlimit needs to have a speculation check (git-fixes).
  • ps3disk: use the default segment boundary (git-fixes).
  • ptrace: make ptrace() fail if the tracee changed its pid unexpectedly (git-fixes).
  • quota: Check next/prev free block number after reading from quota file (bsc#1206640).
  • quota: Lock sumount in exclusive mode for QXQUOTA{ON,OFF} quotactls (bsc#1207104).
  • revert 'blkdev: check for valid request queue before issuing flush' (git-fixes).
  • revert 'dm cache: fix arm link errors with inline' (git-fixes).
  • revert 'scsi: core: run queue if SCSI device queue isn't ready and queue is idle' (git-fixes).
  • rpm/check-for-config-changes: add OBJTOOL and FTRACEMCOUNTUSE* Dummy gcc pretends to support -mrecord-mcount option but actual gcc on ppc64le does not. Therefore ppc64le builds of 6.2-rc1 and later in OBS enable FTRACEMCOUNTUSEOBJTOOL and OBJTOOL config options, resulting in check failure. As we already have FTRACEMCOUNTUSECC and FTRACEMCOUNTUSERECORDMCOUNT in the exception list, replace them with a general pattern. And add OBJTOOL as well.
  • rpm/check-for-config-changes: loosen pattern for ASHAS* This is needed to handle CONFIGASHASNONCONST_LEB128.
  • rpm/kernel-binary.spec.in: Add Enhances and Supplements tags to in-tree KMPs This makes in-tree KMPs more consistent with externally built KMPs and silences several rpmlint warnings.
  • rpm/mkspec-dtb: add riscv64 dtb-renesas subpackage
  • rsxx: add missed destroy_workqueue calls in remove (git-fixes).
  • sbitmap: Avoid leaving waitqueue in invalid state in _sbqwake_up() (git-fixes).
  • sbitmap: Avoid leaving waitqueue in invalid state in _sbqwake_up() (git-fixes).
  • sbitmap: fix lockup while swapping (bsc#1206602).
  • scripts/CKC: Do not use empty branches file Do not use it and do not write neither.
  • scripts/CKC: Make checker more specific
  • scripts/CKC: Make checker script download branches.conf Requires curl, downloads and caches the branches.conf file.
  • scripts/CKC: do not output from shopt shopt outputs the status of the flag, so that git grep looks like: git grep -qi 'nocasematch off ^References:.bsc#1202195' remotes/origin/SLE15-SP2-RT -- 'patches.' I do not know how it can work (it does -- maybe thanks to ^), but it's not definitely OK. So make shopt in term2regex() quiet.
  • scripts/CKC: simplify print_branch AFAIU, it's simply: printf '%-23s'
  • scripts/CKC: store local branches with $USER prefix So that on shared machines, it can be overwritten when expires.
  • scripts/CKC: test accepts only =, not == And put $1 into '' too.
  • scripts/gitsort/gitsort.py: Add arm-soc for-next tree.
  • scripts/wd-functions.sh: fix getbranchname() in worktree Instead of using a hard-coded path for the git directory, use git rev-parse with --git-dir flag, introduced since 0.99.7, to find the git directory so branch name can be correctly detected while in git worktrees.
  • scsi: fcoe: Fix possible name leak when device_register() fails (git-fixes).
  • scsi: fcoe: Fix transport not deattached when fcoeifinit() fails (git-fixes).
  • scsi: hpsa: Fix allocation size for scsihostalloc() (git-fixes).
  • scsi: hpsa: Fix error handling in hpsaaddsas_host() (git-fixes).
  • scsi: hpsa: Fix possible memory leak in hpsaaddsas_device() (git-fixes).
  • scsi: hpsa: Fix possible memory leak in hpsainitone() (git-fixes).
  • scsi: ipr: Fix WARNING in ipr_init() (git-fixes).
  • scsi: mpt3sas: Fix possible resource leaks in mpt3sastransportport_add() (git-fixes).
  • scsi: qla2xxx: Check if port is online before sending ELS (bsc#1208570).
  • scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests (bsc#1208570).
  • scsi: qla2xxx: Fix IOCB resource check warning (bsc#1208570).
  • scsi: qla2xxx: Fix erroneous link down (bsc#1208570).
  • scsi: qla2xxx: Fix exchange oversubscription (bsc#1208570).
  • scsi: qla2xxx: Fix exchange oversubscription for management commands (bsc#1208570).
  • scsi: qla2xxx: Fix link failure in NPIV environment (bsc#1208570).
  • scsi: qla2xxx: Fix printk() format string (bsc#1208570).
  • scsi: qla2xxx: Fix stalled login (bsc#1208570).
  • scsi: qla2xxx: Make qlatrimbuf() and _qlaadjust_buf() static (bsc#1208570).
  • scsi: qla2xxx: Relocate/rename vp map (bsc#1208570).
  • scsi: qla2xxx: Remove dead code (GNN ID) (bsc#1208570).
  • scsi: qla2xxx: Remove dead code (GPNID) (bsc#1208570).
  • scsi: qla2xxx: Remove dead code (bsc#1208570).
  • scsi: qla2xxx: Remove increment of interface err cnt (bsc#1208570).
  • scsi: qla2xxx: Remove the unused variable wwn (bsc#1208570).
  • scsi: qla2xxx: Remove unintended flag clearing (bsc#1208570).
  • scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called (bsc#1208570).
  • scsi: qla2xxx: Simplify if condition evaluation (bsc#1208570).
  • scsi: qla2xxx: Update version to 10.02.08.100-k (bsc#1208570).
  • scsi: qla2xxx: Update version to 10.02.08.200-k (bsc#1208570).
  • scsi: qla2xxx: Use a variable for repeated mem_size computation (bsc#1208570).
  • scsi: qla2xxx: edif: Fix clang warning (bsc#1208570).
  • scsi: qla2xxx: edif: Fix performance dip due to lock contention (bsc#1208570).
  • scsi: qla2xxx: edif: Fix stall session after app start (bsc#1208570).
  • scsi: qla2xxx: edif: Reduce memory usage during low I/O (bsc#1208570).
  • scsi: scsidebug: Fix a warning in respwrite_scat() (git-fixes).
  • scsi: scsidebug: Fix possible name leak in sdebugaddhosthelper() (git-fixes).
  • scsi: smartpqi: use processor ID for hwqueue for non-mq case .
  • scsi: snic: Fix possible UAF in snictgtcreate() (git-fixes).
  • scsi: target: core: Add CONTROL field for trace events (git-fixes).
  • sctp: fail if no bound addresses can be used for a given scope (bsc#1206677).
  • signal handling: do not use BUG_ON() for debugging (git-fixes).
  • struct dwc3: move new members to the end (git-fixes).
  • sunrpc: make lockless test safe (bsc#1207201).
  • sunvdc: Do not spin in an infinite loop when violdcsend() returns EAGAIN (git-fixes).
  • swim: fix cleanup on setup error (git-fixes).
  • tracing/cfi: Fix cmpentries* functions signature mismatch (git-fixes).
  • tracing: Adding NULL checks for trace_array descriptor pointer (git-fixes).
  • tracing: Ensure trace buffer is at least 4096 bytes large (git-fixes).
  • tracing: Fix a kmemleak false positive in tracing_map (git-fixes).
  • tracing: Fix infinite loop in tracingreadpipe on overflowed printtraceline (git-fixes).
  • tracing: Fix sleeping function called from invalid context on RT kernel (git-fixes).
  • tracing: Fix stack trace event size (git-fixes).
  • tracing: Fix tpprintk option related with tpprintkstopon_boot (git-fixes).
  • tracing: Make sure trace_printk() can output as soon as it can be used (git-fixes).
  • tracing: Set kernel_stack's caller size properly (git-fixes).
  • tracing: Use address-of operator on section symbols (git-fixes).
  • tracing: incorrect isolatemotet cast in mmvmscanlru_isolate (git-fixes).
  • trigger_next should increase position index (git-fixes).
  • udf: Avoid accessing uninitialized data on failed inode read (bsc#1206642).
  • udf: Check LVID earlier (bsc#1207108).
  • udf: Fix BUG on corrupted inode (bsc#1207107).
  • udf: Fix NULL pointer dereference in udf_symlink function (bsc#1206646).
  • udf: Fix a slab-out-of-bounds write bug in udffindentry() (bsc#1206649).
  • udf: Fix free space reporting for metadata and virtual partitions (bsc#1206641).
  • udf: Limit sparing table size (bsc#1206643).
  • udf: fix silent AED tagLocation corruption (bsc#1206645).
  • udfgetextendedattr() had no boundary checks (bsc#1206648).
  • usb: dwc3: Disable phy suspend after power-on reset (git-fixes).
  • usb: dwc3: core: Call dwc3coreget_phy() before initializing phys (git-fixes).
  • usb: dwc3: core: Fix ULPI PHYs and prevent phyget/ulpiinit during suspend/resume (git-fixes).
  • usb: dwc3: core: initialize ULPI before trying to get the PHY (git-fixes).
  • usb: dwc3: fix PHY disable sequence (git-fixes).
  • usb: dwc3: gadget: Fix event pending check (git-fixes).
  • usb: host: Fix refcount leak in ehcihcdppcofprobe (git-fixes).
  • usb: musb: fix MUSBQUIRKBDISCONNECT99 handling (git-fixes).
  • usb: ohci-nxp: Fix refcount leak in ohcihcdnxp_probe (git-fixes).
  • usb: serial: ch341: fix disabled rx timer on older devices (git-fixes).
  • usb: serial: console: move mutexunlock() before usbserial_put() (git-fixes).
  • virtio-blk: Fix memory leak among suspend/resume procedure (git-fixes).
  • virtio_console: break out of buf poll on remove (git-fixes).
  • virtioconsole: eliminate anonymous moduleinit & module_exit (git-fixes).
  • x86/MCE/AMD: Carve out the MC4_MISC thresholding quirk (git-fixes).
  • x86/MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models (git-fixes).
  • x86/asm: Add instruction suffixes to bitops (git-fixes).
  • x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates (git-fixes).
  • x86/bugs: Move the l1tf function and define pr_fmt properly (git-fixes).
  • x86/earlyprintk: Add a force option for pciserial device (git-fixes).
  • x86/entry/64: Add instruction suffix (git-fixes).
  • x86/fpu: Add mightfault() to userinsn() (git-fixes).
  • x86/hpet: Prevent potential NULL pointer dereference (git-fixes).
  • x86/kexec: Do not setup EFI info if EFI runtime is not enabled (git-fixes).
  • x86/mce-inject: Reset injection struct after injection (git-fixes).
  • x86/mce/mce-inject: Preset the MCE injection struct (git-fixes).
  • x86/mce: Fix -Wmissing-prototypes warnings (git-fixes).
  • x86/mm: Do not leak kernel addresses (git-fixes).
  • x86/speculation: Add support for STIBP always-on preferred mode (git-fixes).
  • x86/speculation: Change misspelled STIPB to STIBP (git-fixes).
  • x86: boot: Fix EFI stub alignment (git-fixes).
  • x86: link vdso and boot with -z noexecstack --no-warn-rwx-segments (bsc#1203200).
  • xen-netfront: Fix hang on device removal (bsc#1206698).
  • xfs: Fix UBSAN null-ptr-deref in xfssysfsinit (git-fixes).
  • xfs: Fix bulkstat compat ioctls on x32 userspace (git-fixes).
  • xfs: Fix unreferenced object reported by kmemleak in xfssysfsinit() (git-fixes).
  • xfs: fix attr leaf header freemap.size underflow (git-fixes).
  • xfs: fix leaks on corruption errors in xfs_bmap.c (git-fixes).
  • xfs: fix mount failure crash on invalid iclog memory access (git-fixes).
  • xfs: fix partially uninitialized structure in xfsreflinkremap_extent (git-fixes).
  • xfs: fix realtime bitmap/summary file truncation when growing rt volume (git-fixes).
  • xfs: fix use-after-free race in xfsbufrele (git-fixes).
  • xfs: initialize the shortform attr header padding entry (git-fixes).
  • xfs: make sure the rt allocator does not run off the end (git-fixes).
  • xfs: require both realtime inodes to mount (git-fixes).
  • xhci: Do not show warning for reinit on known broken suspend (git-fixes).
  • zram: fix double free backing device (git-fixes).
References

Affected packages

SUSE:Linux Enterprise High Availability Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "dlm-kmp-default": "4.12.14-122.150.1",
            "gfs2-kmp-default": "4.12.14-122.150.1",
            "ocfs2-kmp-default": "4.12.14-122.150.1",
            "cluster-md-kmp-default": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-kgraft": "4.12.14-122.150.1",
            "kernel-default-kgraft-devel": "4.12.14-122.150.1",
            "kgraft-patch-4_12_14-122_150-default": "1-8.3.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kgraft-patch-SLE12-SP5_Update_40

Package

Name
kgraft-patch-SLE12-SP5_Update_40
Purl
purl:rpm/suse/kgraft-patch-SLE12-SP5_Update_40&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-8.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-kgraft": "4.12.14-122.150.1",
            "kernel-default-kgraft-devel": "4.12.14-122.150.1",
            "kgraft-patch-4_12_14-122_150-default": "1-8.3.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-docs

Package

Name
kernel-docs
Purl
purl:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.150.1",
            "kernel-obs-build": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-obs-build

Package

Name
kernel-obs-build
Purl
purl:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.150.1",
            "kernel-obs-build": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.150.1",
            "kernel-devel": "4.12.14-122.150.1",
            "kernel-default-base": "4.12.14-122.150.1",
            "kernel-default-man": "4.12.14-122.150.1",
            "kernel-default": "4.12.14-122.150.1",
            "kernel-source": "4.12.14-122.150.1",
            "kernel-syms": "4.12.14-122.150.1",
            "kernel-default-devel": "4.12.14-122.150.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.150.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-extra": "4.12.14-122.150.1"
        }
    ]
}